a3f0d6a4a3fd5b1543e963a01a5c409b_JaffaCakes118

General

Target

a3f0d6a4a3fd5b1543e963a01a5c409b_JaffaCakes118
Size

197KB
MD5

a3f0d6a4a3fd5b1543e963a01a5c409b
SHA1

a207a520e0b2df0cb8d7c70bc5bd128a2962360d
SHA256

22f68da4d7ff6cb394ea1521a12b68bcac78f1dee3e8113e51a9381901c877ed
SHA512

3acb23a66ac01b3856136f6e7b2bb6d362cdbbf10787d5c284571de2b1dc36571ae5a8437fc87894eafe48430d92df1f6965ee2f8c6b4643cfc2b0e1fec9b84e
SSDEEP

6144:D0ux4tbauiEqQ4+5c2YHgjH+jSj+wmZKmNqyR14ODGQxOrDLAKR:DjaziPqlmZKmz14yOEK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a3f0d6a4a3fd5b1543e963a01a5c409b_JaffaCakes118

Files

a3f0d6a4a3fd5b1543e963a01a5c409b_JaffaCakes118
.exe windows:5 windows x86 arch:x86

96c13d19e7eb363ae0ea925b966875b3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LocalFileTimeToFileTime
LeaveCriticalSection
WideCharToMultiByte
InterlockedExchange
GetCurrentProcessId
LockResource
CompareStringA
GetCurrentProcess
SetConsoleCtrlHandler
TerminateThread
SetEnvironmentVariableA
GetModuleFileNameW
InterlockedIncrement
TerminateProcess
GetStdHandle
InterlockedDecrement
InterlockedCompareExchange
VirtualAlloc
HeapCreate
GetFileType
GetLastError
EnterCriticalSection
CreateMutexW
DeleteCriticalSection
GetTickCount
DeleteFileW
HeapSize
MultiByteToWideChar
GetModuleHandleA

user32

EnableWindow
DestroyMenu
GetWindowThreadProcessId
DrawTextW
CallWindowProcW
PostQuitMessage
ScreenToClient
EnableMenuItem
RegisterClassW
GetSubMenu
RemoveMenu
GetWindowTextLengthW
GetDlgItem
SendDlgItemMessageW
DestroyWindow
DefWindowProcW
GetMenuItemCount

msvcrt

_initterm
fprintf
_CxxThrowException
__dllonexit
_adjust_fdiv
_iob
_wtoi

opengl32

glRotatef

gdi32

CreateCompatibleBitmap
SetWindowExtEx
BitBlt

Sections

.text
Size: 122KB - Virtual size: 121KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 71KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 149KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

96c13d19e7eb363ae0ea925b966875b3

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

msvcrt

opengl32

gdi32

Sections

.text Size: 122KB - Virtual size: 121KB

.rdata Size: 71KB - Virtual size: 70KB

.data Size: 512B - Virtual size: 149KB

.rsrc Size: 3KB - Virtual size: 2KB

.text
Size: 122KB - Virtual size: 121KB

.rdata
Size: 71KB - Virtual size: 70KB

.data
Size: 512B - Virtual size: 149KB

.rsrc
Size: 3KB - Virtual size: 2KB