94bb3c37dc0e120e7ba8d64499b7d171_JaffaCakes118

General

Target

94bb3c37dc0e120e7ba8d64499b7d171_JaffaCakes118
Size

116KB
MD5

94bb3c37dc0e120e7ba8d64499b7d171
SHA1

ae876f04d263f8e5fbcf24153efb039b9162488e
SHA256

c22756eb674374d4fb6146d979d13b741474957e3f942e5c5a19247e5fe591a9
SHA512

852f0510e2ce868d5dfebe072a4c4c7b098c5ba5db3de2d1c003a87a73613696c6681c6689237c4e2878975f12642e4f3e7d5753e7517d6786f3743a36012987
SSDEEP

1536:fV81Wvm5KotG1eantV3PZRB/1QKWbjqiYh40JRoFc:eWSGpHZRBd1WbjqiYhdzoF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
94bb3c37dc0e120e7ba8d64499b7d171_JaffaCakes118

Files

94bb3c37dc0e120e7ba8d64499b7d171_JaffaCakes118
.exe windows:5 windows x86 arch:x86

ec8392791b27a0f8429d00d2a98bc7df

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

TranslateMessage
CharNextA
GetSystemMetrics
GetDesktopWindow
GetParent

gdi32

SetTextAlign
SetMapMode
GetObjectA
CreateSolidBrush
DeleteDC
PatBlt
LineTo
SelectPalette
CreatePalette
SaveDC
RestoreDC
SetStretchBltMode
CreateFontIndirectA
CreatePen
GetClipBox
DeleteObject
GetTextMetricsA
RectVisible
GetDeviceCaps
CreateCompatibleDC
GetPixel
SetTextColor
GetStockObject
SetPixel
SelectObject

kernel32

GlobalFindAtomW
GetACP
DeleteFileW
MulDiv
GetWindowsDirectoryA
GetModuleHandleW
GetCurrentThread
GetConsoleOutputCP
GetCommandLineA
GetCurrentThreadId
QueryPerformanceCounter
lstrcmpiW
DeleteFileA
lstrlenW
RemoveDirectoryA
SetCurrentDirectoryA
VirtualAlloc
GetStartupInfoA
VirtualFree
GetOEMCP
GetModuleHandleA
GetVersion
IsDebuggerPresent
GetCurrentProcess
GetTickCount
GetCurrentProcessId
GetUserDefaultLangID
lstrcmpiA
CopyFileA
GetProcessHeap
GetDriveTypeA
RemoveDirectoryW
GlobalFindAtomA
GetCommandLineW
GetThreadLocale
lstrcmpA
lstrlenA

glu32

gluQuadricCallback

Sections

.text
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ec8392791b27a0f8429d00d2a98bc7df

Headers

File Characteristics

Imports

user32

gdi32

kernel32

glu32

Sections

.text Size: 13KB - Virtual size: 12KB

.rdata Size: 7KB - Virtual size: 6KB

.data Size: 80KB - Virtual size: 79KB

.rsrc Size: 15KB - Virtual size: 14KB

.text
Size: 13KB - Virtual size: 12KB

.rdata
Size: 7KB - Virtual size: 6KB

.data
Size: 80KB - Virtual size: 79KB

.rsrc
Size: 15KB - Virtual size: 14KB