bc6ebfc090e0e1b9e93dda352be0eefa_JaffaCakes118

General

Target

bc6ebfc090e0e1b9e93dda352be0eefa_JaffaCakes118
Size

104KB
MD5

bc6ebfc090e0e1b9e93dda352be0eefa
SHA1

dfa5b9fe7607d7e27f4a5887746469f823282bf2
SHA256

559249e9006d8eb426665384b021ec997e35331f6d7a587f7a1ea01412898b73
SHA512

350951cfc4282a6ba81b9d918f137470910ab3e2528f56c0dd1abe6a3a309dc0cda2fb28f3022b4c6443e2b1b083dd522c713e926df0ee03db2ed5a417dab849
SSDEEP

1536:ds3DAPCP3l/Ko27fCEo83vf5iW9419rDUWvnfHezU:EDW6B92LCwf94ZIWvfHkU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bc6ebfc090e0e1b9e93dda352be0eefa_JaffaCakes118

Files

bc6ebfc090e0e1b9e93dda352be0eefa_JaffaCakes118
.exe windows:5 windows x86 arch:x86

777bb43859f007d01a781834a8bed279

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CopyFileA
GetThreadLocale
lstrlenA
GlobalFindAtomW
GetStartupInfoA
MulDiv
GetWindowsDirectoryA
GetModuleHandleA
GetProcessHeap
DeleteFileW
lstrcmpiA
SetCurrentDirectoryA
GetUserDefaultLangID
GetDriveTypeA
GetCurrentProcess
GetVersion
GetCommandLineW
GetCurrentThread
RemoveDirectoryA
GlobalFindAtomA
lstrcmpiW
GetTickCount
lstrcmpA
QueryPerformanceCounter
IsDebuggerPresent
GetModuleHandleW
GetACP
GetCurrentThreadId
GetCommandLineA
GetConsoleOutputCP
lstrlenW
DeleteFileA
GetCurrentProcessId
RemoveDirectoryW
GetOEMCP
ExitProcess
VirtualAlloc

gdi32

CreatePen
RectVisible
GetPixel
GetDeviceCaps
SetMapMode
GetClipBox
CreateCompatibleDC
SelectObject
GetTextMetricsA
SaveDC
CreatePalette
GetObjectA
CreateSolidBrush
SetTextColor
DeleteDC
CreateFontIndirectA
SetStretchBltMode
SetTextAlign
PatBlt
LineTo
SelectPalette
GetStockObject
DeleteObject
RestoreDC
GetNearestPaletteIndex

user32

CharNextA
TranslateMessage
GetDC
GetSystemMetrics
GetParent
GetDesktopWindow

glu32

gluQuadricCallback

Sections

.text
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 70KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

777bb43859f007d01a781834a8bed279

Headers

File Characteristics

Imports

kernel32

gdi32

user32

glu32

Sections

.text Size: 22KB - Virtual size: 21KB

.data Size: 70KB - Virtual size: 69KB

.rsrc Size: 11KB - Virtual size: 11KB

.text
Size: 22KB - Virtual size: 21KB

.data
Size: 70KB - Virtual size: 69KB

.rsrc
Size: 11KB - Virtual size: 11KB