8e19ed3a86b1d7b238d62ee2288a3836_JaffaCakes118

General

Target

8e19ed3a86b1d7b238d62ee2288a3836_JaffaCakes118
Size

91KB
MD5

8e19ed3a86b1d7b238d62ee2288a3836
SHA1

c02560222975fffcbb8fc9e0e59fe7c110a9e8a8
SHA256

00be632ae3fce85b8ef6663275767e3d46978892ace1ac4e59f7a6e12db9397d
SHA512

7d2335a36e7a455c3a0d359546f1f1ad6761da541c7165602bafb3e1ac3a921a513ed991c3e207bd18665ad9f21facd8c9ef9b7f746afe2aa42a8475d785797c
SSDEEP

1536:T0evTtmvFHFq/qW+g8D1f2y6WOWSxA2vU/C9hpzoovu2+VZMllAd:Ie7tmvFlKtB81nO3MCfRoovu2+VZMLA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8e19ed3a86b1d7b238d62ee2288a3836_JaffaCakes118

Files

8e19ed3a86b1d7b238d62ee2288a3836_JaffaCakes118
.exe windows:5 windows x86 arch:x86

4906fe6965909a8cdcfe3e3326356381

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

PatBlt
GetTextMetricsA
CreateSolidBrush
SelectPalette
GetStockObject
SetMapMode
SelectObject
GetDeviceCaps
RectVisible
SetStretchBltMode
DeleteObject
SetTextAlign
GetClipBox
CreatePalette
GetObjectA
CreateFontIndirectA
GetNearestPaletteIndex
SaveDC
GetPixel
DeleteDC
CreatePen
LineTo
SetTextColor
RestoreDC
CreateCompatibleDC

user32

GetSystemMetrics
TranslateMessage
GetDC
GetDesktopWindow
CharNextA
GetParent

kernel32

GetProcessHeap
lstrcmpA
GetCurrentProcess
GetCurrentThread
SetCurrentDirectoryA
GetModuleHandleW
GetCommandLineW
QueryPerformanceCounter
GetThreadLocale
DeleteFileW
GetCurrentThreadId
MulDiv
VirtualAlloc
GlobalFindAtomW
GetConsoleOutputCP
CopyFileA
VirtualFree
GetACP
IsDebuggerPresent
GetTickCount
GetWindowsDirectoryA
GlobalFindAtomA
lstrcmpiA
GetVersion
lstrlenA
lstrlenW
RemoveDirectoryW
GetDriveTypeA
GetCurrentProcessId
GetUserDefaultLangID
GetCommandLineA
ExitProcess
DeleteFileA
GetOEMCP
GetStartupInfoA
lstrcmpiW
GetModuleHandleA

glu32

gluQuadricCallback

Sections

.text
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 58KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4906fe6965909a8cdcfe3e3326356381

Headers

File Characteristics

Imports

gdi32

user32

kernel32

glu32

Sections

.text Size: 21KB - Virtual size: 20KB

.data Size: 58KB - Virtual size: 58KB

.rsrc Size: 10KB - Virtual size: 10KB

.text
Size: 21KB - Virtual size: 20KB

.data
Size: 58KB - Virtual size: 58KB

.rsrc
Size: 10KB - Virtual size: 10KB