a7d64fbb077c09b8f3f4e99a8842dc58_JaffaCakes118

General

Target

a7d64fbb077c09b8f3f4e99a8842dc58_JaffaCakes118
Size

94KB
MD5

a7d64fbb077c09b8f3f4e99a8842dc58
SHA1

778dc07add90b88a70a6b5af53808e2f3affeefe
SHA256

4e4606e86a2496c7787cd20a0c66f5a73ea35f71556912960e61fcde73344f16
SHA512

e49c2e14248921768f0c8762438e7ef1f7c70da29b06d68e1d9eb54d2dadab150e17e225d35338d2227626f7af86e8980119a061f7b67407396616b0539389d0
SSDEEP

1536:JPoXWmeEXKtGye+WJajtv9y5U/bH4TN3DPCaag3HWv+Rco48W6cfYir2AVVO5e:JPAWmya4zybhD6bgGvyHsbr2AI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a7d64fbb077c09b8f3f4e99a8842dc58_JaffaCakes118

Files

a7d64fbb077c09b8f3f4e99a8842dc58_JaffaCakes118
.exe windows:4 windows x86 arch:x86

259124c455da7dac6a8ad850a292805f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
DeleteFiber
GetPrivateProfileStringW
VirtualProtect
CreateMutexW
SetErrorMode
RtlMoveMemory
VirtualAlloc
VirtualFree
GetProfileStringW
ExitProcess
RegisterWaitForInputIdle
LoadLibraryA
ExitThread
CreateEventW
GetModuleHandleA

msvcrt

abs
memset
_wtoi
_mbsnicoll
?set_unexpected@@YAP6AXXZP6AXXZ@Z
memcpy
atoi
_mbsset
_cgets
_wsplitpath
ispunct
rand
__unguarded_readlc_active
strcat
_acmdln
_pwctype
strtok
_putw
_ui64tow
_statusfp
_mbsncmp
_spawnvpe
_sys_errlist
_eof

comdlg32

ChooseFontW
FindTextA
GetOpenFileNameA
ReplaceTextW
ChooseFontA
dwOKSubclass
CommDlgExtendedError
dwLBSubclass
ReplaceTextA

winmm

PlaySoundW
timeEndPeriod
joyReleaseCapture
DefDriverProc
DrvGetModuleHandle

opengl32

glIsEnabled
glScissor
glMaterialiv
glBegin
glLightModeliv
glTexCoord3sv
glGetMapiv
glGetTexLevelParameterfv
glColor4dv
wglSetLayerPaletteEntries
glLightModelf
glPixelStorei
glTexCoord2fv
glEnd
glStencilOp
glPushMatrix
glCallLists
wglRealizeLayerPalette
glRectd

Sections

.text
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 74B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

259124c455da7dac6a8ad850a292805f

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

comdlg32

winmm

opengl32

Sections

.text Size: 24KB - Virtual size: 24KB

.rdata Size: 23KB - Virtual size: 22KB

.data Size: 21KB - Virtual size: 21KB

.rsrc Size: 23KB - Virtual size: 23KB

.reloc Size: 512B - Virtual size: 74B

.text
Size: 24KB - Virtual size: 24KB

.rdata
Size: 23KB - Virtual size: 22KB

.data
Size: 21KB - Virtual size: 21KB

.rsrc
Size: 23KB - Virtual size: 23KB

.reloc
Size: 512B - Virtual size: 74B