87a87dec3288a23c78bf1baa9a27ed72_JaffaCakes118

General

Target

87a87dec3288a23c78bf1baa9a27ed72_JaffaCakes118
Size

97KB
MD5

87a87dec3288a23c78bf1baa9a27ed72
SHA1

b89847fe0d4e279ae43b040f85a43efbc82f2805
SHA256

17bbbb93f026984e7ce21c1701249f0a9e51226ba1c5a353c63ae6d355478b8e
SHA512

68682547250e64e4b3229d85d31bb45fcea632d778dc052bbf524b1b3a2367e2429cbe6d508201b85bc33ef941980a4808e140a8afc8a6a2ec40f98334b82846
SSDEEP

1536:xzj7Oz5OqisSb8QRr3dH4LROQPeW0Of1yb2OPTF9Gz5QGNjJw+8XnZ:xzjCzQ9sSA2NH4LROtrOfWPTmdJe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
87a87dec3288a23c78bf1baa9a27ed72_JaffaCakes118

Files

87a87dec3288a23c78bf1baa9a27ed72_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3f7b2b82005c9bd8b5cfb6a1d671f2bc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetParent
TranslateMessage
GetDesktopWindow
GetSystemMetrics
CharNextA
GetDC

gdi32

DeleteDC
CreateFontIndirectA
SetTextColor
GetTextMetricsA
SaveDC
CreateCompatibleDC
GetPixel
PatBlt
RestoreDC
DeleteObject
GetNearestPaletteIndex
SetStretchBltMode
CreatePalette
GetDeviceCaps
SelectObject
SetTextAlign
GetClipBox
SelectPalette
CreateSolidBrush
SetMapMode
GetStockObject
RectVisible
LineTo
CreatePen
GetObjectA

kernel32

GetUserDefaultLangID
lstrcmpiW
DeleteFileW
GetCurrentThreadId
QueryPerformanceCounter
GetVersion
IsDebuggerPresent
lstrcmpiA
GetACP
lstrlenA
GetCurrentProcessId
RemoveDirectoryA
GetModuleHandleW
RemoveDirectoryW
lstrlenW
GetCommandLineW
GetModuleHandleA
CopyFileA
GetDriveTypeA
GetThreadLocale
DeleteFileA
GetCurrentProcess
GetProcessHeap
lstrcmpA
GlobalFindAtomA
MulDiv
SetCurrentDirectoryA
GetCurrentThread
GetStartupInfoA
GetCommandLineA
GetTickCount
ExitProcess
GetConsoleOutputCP
GetWindowsDirectoryA
GlobalFindAtomW
GetOEMCP
VirtualAlloc

glu32

gluQuadricCallback

Sections

.text
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 63KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3f7b2b82005c9bd8b5cfb6a1d671f2bc

Headers

File Characteristics

Imports

user32

gdi32

kernel32

glu32

Sections

.text Size: 21KB - Virtual size: 20KB

.data Size: 63KB - Virtual size: 62KB

.rsrc Size: 12KB - Virtual size: 12KB

.text
Size: 21KB - Virtual size: 20KB

.data
Size: 63KB - Virtual size: 62KB

.rsrc
Size: 12KB - Virtual size: 12KB