a6ff7e857310bbd230ca3b66a620cbdf_JaffaCakes118

General

Target

a6ff7e857310bbd230ca3b66a620cbdf_JaffaCakes118
Size

92KB
MD5

a6ff7e857310bbd230ca3b66a620cbdf
SHA1

4829b53827cd8608081c4e04239448db1dc51220
SHA256

d0520443963c5e803a7a7fa862191bd8868d7aa714dd97f4bfa94b7229303217
SHA512

13ec72bb6d95ed2d5c7e0e2c0e413696d1be8f36bb36aca1dd7aa5cb97d77f1737eb4df0bf965f3a2df0c75d6a33aa816ef1622c6f347f4772264615dd454538
SSDEEP

1536:4XV8FWXxS67zDAN1+YOrDihouL8rWzYWqg91V4HJ5HWZbbGLMaiJoYQ1BU7:kGFGT7weHDihog89Wj91kTHunG3Vm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a6ff7e857310bbd230ca3b66a620cbdf_JaffaCakes118

Files

a6ff7e857310bbd230ca3b66a620cbdf_JaffaCakes118
.exe windows:5 windows x86 arch:x86

bef08cb93670b12f7cf185c6bcc6eb40

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDC
CharNextA
GetSystemMetrics
GetDesktopWindow
GetParent
TranslateMessage

gdi32

SelectObject
GetTextMetricsA
CreatePalette
CreateCompatibleDC
LineTo
CreateFontIndirectA
SaveDC
DeleteDC
RectVisible
SelectPalette
GetPixel
SetMapMode
CreateSolidBrush
GetStockObject
PatBlt
GetClipBox
RestoreDC
GetDeviceCaps
GetObjectA
SetTextColor
CreatePen
DeleteObject
SetStretchBltMode
SetTextAlign
GetNearestPaletteIndex

kernel32

CopyFileA
GetTickCount
GetCurrentProcessId
GetVersion
RemoveDirectoryA
GetThreadLocale
lstrcmpiA
GetCurrentThreadId
GetProcessHeap
GetACP
GetDriveTypeA
GetCurrentProcess
GetModuleHandleA
GetCommandLineW
MulDiv
GetConsoleOutputCP
GetUserDefaultLangID
GetCommandLineA
GlobalFindAtomA
GetStartupInfoA
GetOEMCP
lstrcmpiW
SetCurrentDirectoryA
GlobalFindAtomW
DeleteFileA
GetCurrentThread
DeleteFileW
GetModuleHandleW
lstrlenW
IsDebuggerPresent
QueryPerformanceCounter
lstrlenA
GetWindowsDirectoryA
RemoveDirectoryW
ExitProcess
lstrcmpA
VirtualAlloc

glu32

gluQuadricCallback

Sections

.text
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bef08cb93670b12f7cf185c6bcc6eb40

Headers

File Characteristics

Imports

user32

gdi32

kernel32

glu32

Sections

.text Size: 19KB - Virtual size: 18KB

.data Size: 60KB - Virtual size: 59KB

.rsrc Size: 12KB - Virtual size: 11KB

.text
Size: 19KB - Virtual size: 18KB

.data
Size: 60KB - Virtual size: 59KB

.rsrc
Size: 12KB - Virtual size: 11KB