966c451634d76f31ae55d1f8d65b8808_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

966c451634d76f31ae55d1f8d65b8808_JaffaCakes118
Size

319KB
MD5

966c451634d76f31ae55d1f8d65b8808
SHA1

897623de4a95ab0166b4197a5e9e33264774d05f
SHA256

ccf318c756d750122f85ea036cd0ee51f684bae055f21d6786e073617c5b05eb
SHA512

b7cfafed8f4408f349e9bfdec8478fb7b8e48bb99c3a89ebbf9dbcc79f752c474c9163c44f14f63459e0d228d0a2c4aae3abca923a91945dbcd70e618fc7d3be
SSDEEP

6144:wwvyNPqqPfKljCogrsBroS8VV7Em1SE92wNEs3fu1CbWM9WEjSScnQrEok8I1I/x:BCPqqPiljfQsdB0JUVwNjfu14WMfjSSh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
966c451634d76f31ae55d1f8d65b8808_JaffaCakes118

Files

966c451634d76f31ae55d1f8d65b8808_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d134dee8d52ce4f705f6b116862097e4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

opengl32

glNormal3bv
glColor4b
glColor4d
glClipPlane
glScaled
glEndList
glColor3fv
glTexCoord4s
glTexCoordPointer
glPixelMapfv
glEdgeFlag
glIndexub
glTexCoord4i
glInitNames
glBitmap
glRasterPos3fv
glGetBooleanv
glEvalCoord1d
glLightModeliv
glRasterPos3s
glRenderMode
glHint
glAlphaFunc

glu32

gluQuadricNormals
gluCylinder
gluNewQuadric
gluTessEndContour
gluQuadricDrawStyle
gluBeginCurve
gluTessCallback
gluTessVertex
gluTessEndPolygon
gluPartialDisk
gluBuild1DMipmaps
gluBuild2DMipmaps
gluNurbsSurface
gluNurbsProperty
gluTessNormal
gluProject
gluNewNurbsRenderer
gluErrorString
gluGetString
gluPickMatrix
gluTessProperty
gluDeleteQuadric
gluEndSurface
gluDisk
gluPwlCurve
gluLoadSamplingMatrices
gluQuadricCallback

ole32

CoRegisterClassObject
OleRegGetMiscStatus
GetClassFile
OleDoAutoConvert
CoGetClassObject
OleRegGetUserType
CoDosDateTimeToFileTime
CreateDataCache
CoGetCurrentProcess
CoUninitialize
CoReleaseServerProcess
CoRegisterPSClsid
CreateItemMoniker
CoIsHandlerConnected
StringFromIID
CoIsOle1Class
CoFreeLibrary
CoLockObjectExternal
CreateClassMoniker
CoInitialize
CoRevokeMallocSpy
CoGetMarshalSizeMax
CoTaskMemRealloc
CreateAntiMoniker
CoRegisterMallocSpy
CoTaskMemFree
CoFreeAllLibraries
CoGetMalloc
CoMarshalInterface
CoAddRefServerProcess

comctl32

ord16
CreateStatusWindowW
ord5
ord6
InitializeFlatSB
CreatePropertySheetPageA
DrawStatusTextW
InitCommonControlsEx
PropertySheetW
UninitializeFlatSB
PropertySheetA
ord13
ord4
ord8
ord17
ord15
ord2
ord14
CreateToolbarEx

shlwapi

StrChrIW
StrCSpnA
StrChrA
StrToIntA
StrRStrIW
StrRChrW
StrCSpnW
StrCmpNA

msvcrt

_exit
_XcptFilter
exit
_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_acmdln
_initterm
__getmainargs

kernel32

VirtualAlloc
ExitProcess
GetProcAddress
GetStartupInfoA
GetModuleHandleA

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 286KB - Virtual size: 652KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d134dee8d52ce4f705f6b116862097e4

Headers

File Characteristics

Imports

opengl32

glu32

ole32

comctl32

shlwapi

msvcrt

kernel32

Sections

.text Size: 12KB - Virtual size: 11KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 286KB - Virtual size: 652KB

.rsrc Size: 16KB - Virtual size: 15KB

.text
Size: 12KB - Virtual size: 11KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 286KB - Virtual size: 652KB

.rsrc
Size: 16KB - Virtual size: 15KB