868d6f4812274aa72abaa761387903eb_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

868d6f4812274aa72abaa761387903eb_JaffaCakes118
Size

108KB
MD5

868d6f4812274aa72abaa761387903eb
SHA1

847fcf3a6b7416af4f466f1f89671fab61bac079
SHA256

16dff2ebabc118541ed93c29f7277e891d1d4a74db4e9fa7b86f73c2851cd48d
SHA512

cc40a388540111a9e59064953736674b1285b15cb780d7dc858508cb3d406217f59524b2305538edadf667ee5d07dc64494c83c654d594d2231da73befa4d3b2
SSDEEP

3072:3QzEWiQu2dqRiaErdnhOTbAS4FduQI5WN:gzEWi4dqurdn6bZYduP2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
868d6f4812274aa72abaa761387903eb_JaffaCakes118

Files

868d6f4812274aa72abaa761387903eb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e1a3c675a7b6723d46d39c0dffb2094c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

libgimp-2.0-0

gimp_drawable_flush
gimp_drawable_get
gimp_image_add_layer
gimp_image_new
gimp_image_set_filename
gimp_install_procedure
gimp_layer_new
gimp_main
gimp_pixel_rgn_init
gimp_pixel_rgn_set_rect
gimp_progress_init_printf
gimp_progress_update
gimp_quit
gimp_register_file_handler_mime
gimp_register_magic_load_handler
gimp_tile_height

kernel32

ExitProcess
GetModuleHandleA
GetProcAddress
SetUnhandledExceptionFilter
VirtualProtect
VirtualQuery

msvcrt

_close
_lseek
_read
__getmainargs
__p___argc
__p___argv
__p__environ
__p__fmode
__set_app_type
_assert
_cexit
_errno
_iob
_onexit
_setmode
atexit
calloc
exit
memcpy
memset
perror
signal
strcmp

libgimpbase-2.0-0

gimp_filename_to_utf8
gimp_locale_directory

libglib-2.0-0

g_file_error_from_errno
g_file_error_quark
g_free
g_malloc
g_malloc0
g_open
g_printerr
g_set_error
g_strerror
g_try_realloc

intl

libintl_bind_textdomain_codeset
libintl_bindtextdomain
libintl_gettext
libintl_textdomain

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 804B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.3data
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e1a3c675a7b6723d46d39c0dffb2094c

Headers

File Characteristics

Imports

libgimp-2.0-0

kernel32

msvcrt

libgimpbase-2.0-0

libglib-2.0-0

intl

Sections

.text Size: 6KB - Virtual size: 6KB

.data Size: 3KB - Virtual size: 2KB

.rdata Size: 1024B - Virtual size: 804B

.bss Size: - Virtual size: 3KB

.idata Size: 2KB - Virtual size: 2KB

.3data Size: 72KB - Virtual size: 72KB

.text
Size: 6KB - Virtual size: 6KB

.data
Size: 3KB - Virtual size: 2KB

.rdata
Size: 1024B - Virtual size: 804B

.bss
Size: - Virtual size: 3KB

.idata
Size: 2KB - Virtual size: 2KB

.3data
Size: 72KB - Virtual size: 72KB