a76019fa288d98ed09b77ddff49c8a33_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

a76019fa288d98ed09b77ddff49c8a33_JaffaCakes118
Size

60KB
MD5

a76019fa288d98ed09b77ddff49c8a33
SHA1

3eb1c346424406464aeede6bd122fd4be3ce0bf6
SHA256

174a486a2d5b2242a5a788f80ec731619f38739cd012256c027366e32ab6752d
SHA512

4ff5343fd23c1904f64976ef58c5a468f1fb68dcfddd25e25bb8aa26d9e0138ef18dae03117db71652b6a94db02a1bcbde2b41dfca4fa63220c35fb1c9a9f61c
SSDEEP

768:NSdjyFx4X0Lg80Vgb4BiwjHLdlDtDAeV1LoibUmHtSvu6SLCmuL0g/8C86GkkdDB:CjRXkg8Sq40wL33oQUmJC1L/8CXYUch

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a76019fa288d98ed09b77ddff49c8a33_JaffaCakes118

Files

a76019fa288d98ed09b77ddff49c8a33_JaffaCakes118
.exe windows:4 windows x86 arch:x86

16ddae516aa1e09bde2ae6863430af74

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetOEMCP
GetProcessHeap
GetModuleHandleA
MulDiv
GetCommandLineA
DeleteFileA
GetUserDefaultLangID
GetWindowsDirectoryA
RemoveDirectoryA
GetTickCount
GetCurrentProcess
GetACP
GetVersion
QueryPerformanceCounter
lstrcmpA
GetThreadLocale
GlobalFindAtomA
GetDriveTypeA
lstrcmpiA
IsDebuggerPresent
lstrcmpiW
GetConsoleOutputCP
GetCommandLineW
GetCurrentProcessId
lstrlenA
GetCurrentThread
DeleteFileW
SetCurrentDirectoryA
CopyFileA
GlobalFindAtomW
GetModuleHandleW
lstrlenW
GetStartupInfoA
GetCurrentThreadId
VirtualAlloc
VirtualFree

user32

GetDC
GetSystemMetrics
TranslateMessage
GetParent
GetDesktopWindow
CharNextA

gdi32

DeleteDC
DeleteObject
SetMapMode
SaveDC
CreateCompatibleDC
GetObjectA
SelectPalette
CreateSolidBrush
LineTo
SetTextAlign
RectVisible
PatBlt
SelectObject
CreatePalette
SetTextColor
GetStockObject
GetTextMetricsA
GetDeviceCaps
GetClipBox
CreateFontIndirectA
GetPixel
RestoreDC
CreatePen
SetStretchBltMode

glu32

gluNurbsCallback

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Vtdt Our
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Lxox Fuk
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 101KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

16ddae516aa1e09bde2ae6863430af74

Headers

File Characteristics

Imports

kernel32

user32

gdi32

glu32

Sections

.text Size: 11KB - Virtual size: 11KB

Vtdt Our Size: 512B - Virtual size: 4KB

.rdata Size: 25KB - Virtual size: 25KB

Lxox Fuk Size: 512B - Virtual size: 4KB

.data Size: 101KB - Virtual size: 100KB

.rsrc Size: 28KB - Virtual size: 27KB

.text
Size: 11KB - Virtual size: 11KB

Vtdt Our
Size: 512B - Virtual size: 4KB

.rdata
Size: 25KB - Virtual size: 25KB

Lxox Fuk
Size: 512B - Virtual size: 4KB

.data
Size: 101KB - Virtual size: 100KB

.rsrc
Size: 28KB - Virtual size: 27KB