73b6c7f318f6c7e5b9242e5ca8c782c9_JaffaCakes118

General

Target

73b6c7f318f6c7e5b9242e5ca8c782c9_JaffaCakes118
Size

222KB
MD5

73b6c7f318f6c7e5b9242e5ca8c782c9
SHA1

6fe28c27f5bfd8e9c8efe5926b05cc0d9b85bf02
SHA256

359c93f81c6ccc933cdc44b1f7240627412e961b4296f11fb9325b7ee4b1fea1
SHA512

82a5e7239296838dc1a1dd6067db2619df7a12538a296f24a5e6c49aa2475c643738df607e455587394e800bcae42f70cc74971f3669a5bdbb3736ec3c6502eb
SSDEEP

3072:aLwqIz/9tegbhu3TSWNfxcyx85H76TXRWsSay+nZA8aVsOHZBrQ/XCoG1opIUCB6:agBIjFemTXRWywVsOICoGevsgIL4f

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
73b6c7f318f6c7e5b9242e5ca8c782c9_JaffaCakes118

Files

73b6c7f318f6c7e5b9242e5ca8c782c9_JaffaCakes118
.exe windows:5 windows x86 arch:x86

af14022c16d5a736afbbb50be14d2cc3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

CreatePen
SetTextColor
DeleteDC
RectVisible
SetStretchBltMode
GetDeviceCaps
CreateFontIndirectA
LineTo
GetTextMetricsA
SetTextAlign
CreateSolidBrush
PatBlt
GetPixel
SelectObject
GetClipBox
RestoreDC
CreatePalette
SelectPalette
SaveDC
DeleteObject
GetObjectA
SetMapMode
CreateCompatibleDC
GetStockObject
SetPixel

user32

CharNextA
GetSystemMetrics
GetDesktopWindow
GetParent
TranslateMessage

kernel32

lstrlenA
lstrcmpA
GetOEMCP
GetDriveTypeA
GetCurrentProcessId
GetCommandLineW
GetConsoleOutputCP
GetModuleHandleW
RemoveDirectoryA
lstrlenW
GetCurrentProcess
GetACP
GetModuleHandleA
IsDebuggerPresent
GlobalFindAtomA
GetStartupInfoA
GlobalFindAtomW
GetVersion
GetUserDefaultLangID
MulDiv
DeleteFileA
GetWindowsDirectoryA
GetProcessHeap
GetThreadLocale
GetCommandLineA
DeleteFileW
CopyFileA
VirtualAlloc
VirtualFree
GetCurrentThread
lstrcmpiW
QueryPerformanceCounter
GetTickCount
RemoveDirectoryW
GetCurrentThreadId
lstrcmpiA

glu32

gluQuadricCallback

Sections

.text
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

af14022c16d5a736afbbb50be14d2cc3

Headers

File Characteristics

Imports

gdi32

user32

kernel32

glu32

Sections

.text Size: 13KB - Virtual size: 12KB

.rdata Size: 7KB - Virtual size: 7KB

.data Size: 80KB - Virtual size: 79KB

.rsrc Size: 12KB - Virtual size: 11KB

.text
Size: 13KB - Virtual size: 12KB

.rdata
Size: 7KB - Virtual size: 7KB

.data
Size: 80KB - Virtual size: 79KB

.rsrc
Size: 12KB - Virtual size: 11KB