83f5531f97b2b816a40ee64965424fbc_JaffaCakes118

General

Target

83f5531f97b2b816a40ee64965424fbc_JaffaCakes118
Size

91KB
MD5

83f5531f97b2b816a40ee64965424fbc
SHA1

cc6c60d64c999384fe2797132d54e4a9cffbf416
SHA256

e32a143c58a8d22911c0ecb2f97b1eb4778aa1a2cbd319c1e88c2917f33ed9d5
SHA512

6bd2faeadc149550b8da3770aefb01e06c6b158224574424ba191c4872542292dfc63a19ba592afdab80be061ebb5d3de0e9b0084b893fe8449d6d776aea6b4c
SSDEEP

1536:FAJ0Xzl+VJuNkK8VCgLN0X8Cjno4TreQIvnliMLsUXK6oTOC2dvjVH:6yzUcNvPjnbfeiM4U66oTOzdL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
83f5531f97b2b816a40ee64965424fbc_JaffaCakes118

Files

83f5531f97b2b816a40ee64965424fbc_JaffaCakes118
.exe windows:5 windows x86 arch:x86

1fc5057238fd80bcbeaef7f5a6858d43

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetWindowsDirectoryA
GetConsoleOutputCP
DeleteFileA
DeleteFileW
lstrcmpA
lstrlenW
GlobalFindAtomW
SetCurrentDirectoryA
MulDiv
IsDebuggerPresent
GetVersion
GetCurrentProcess
GetCurrentThread
VirtualAlloc
GetUserDefaultLangID
GetTickCount
GetProcessHeap
GetThreadLocale
GetStartupInfoA
GetCurrentThreadId
CopyFileA
GlobalFindAtomA
GetModuleHandleW
GetCurrentProcessId
RemoveDirectoryA
GetDriveTypeA
GetACP
RemoveDirectoryW
lstrcmpiW
lstrlenA
GetOEMCP
lstrcmpiA
ExitProcess
GetCommandLineA
GetModuleHandleA
GetCommandLineW
QueryPerformanceCounter

gdi32

GetDeviceCaps
GetPixel
GetTextMetricsA
SetTextAlign
SetMapMode
RectVisible
GetObjectA
CreateSolidBrush
DeleteObject
LineTo
GetClipBox
CreateCompatibleDC
SetTextColor
CreatePen
CreateFontIndirectA
RestoreDC
GetStockObject
SetStretchBltMode
DeleteDC
SelectObject
SelectPalette
SaveDC
CreatePalette
PatBlt
GetNearestPaletteIndex

user32

GetSystemMetrics
GetDC
CharNextA
TranslateMessage
GetParent
GetDesktopWindow

glu32

gluQuadricCallback

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 59KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1fc5057238fd80bcbeaef7f5a6858d43

Headers

File Characteristics

Imports

kernel32

gdi32

user32

glu32

Sections

.text Size: 20KB - Virtual size: 19KB

.data Size: 59KB - Virtual size: 58KB

.rsrc Size: 11KB - Virtual size: 10KB

.text
Size: 20KB - Virtual size: 19KB

.data
Size: 59KB - Virtual size: 58KB

.rsrc
Size: 11KB - Virtual size: 10KB