bcc2ee08aeb8be2f9ad5d6e0a0d6475a_JaffaCakes118

General

Target

bcc2ee08aeb8be2f9ad5d6e0a0d6475a_JaffaCakes118
Size

111KB
MD5

bcc2ee08aeb8be2f9ad5d6e0a0d6475a
SHA1

a65dfc6c276e400aa2551563cd1be7d75b23d400
SHA256

7bfb38ff6bc481ae905d64724071bccaf5904ed91d61cc64cae7443d55a5e1cc
SHA512

f5377205d9993ea0cb7acb27b4d8f94ab9afd94e3539ddc28aea5f89789111f5d22f41d40d8af36e7e8e22eb4a8e3f4d35e037f9da57c52bf8d22295caea3b7e
SSDEEP

1536:aXlJxT61THKN3wWBj/FWbUad6Q82fAlN014HFMkp/h8WmPJMsdWkaV8C7+Yf:azprZN+P6Q8Om01EMgh8WmPJNIp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bcc2ee08aeb8be2f9ad5d6e0a0d6475a_JaffaCakes118

Files

bcc2ee08aeb8be2f9ad5d6e0a0d6475a_JaffaCakes118
.exe windows:5 windows x86 arch:x86

177833a8f4031ffba3615016be05227d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetParent
CharNextA
GetSystemMetrics
GetDesktopWindow
TranslateMessage

gdi32

GetClipBox
CreateFontIndirectA
SetTextAlign
RectVisible
GetStockObject
LineTo
RestoreDC
GetPixel
GetDeviceCaps
GetTextMetricsA
SelectPalette
SelectObject
CreateCompatibleDC
SetStretchBltMode
PatBlt
CreatePen
GetObjectA
DeleteDC
CreatePalette
SetMapMode
DeleteObject
SaveDC
SetTextColor
CreateSolidBrush
SetPixel

kernel32

GetCommandLineW
QueryPerformanceCounter
lstrcmpA
GetCurrentProcess
VirtualAlloc
GetACP
GlobalFindAtomA
VirtualFree
GetTickCount
GetModuleHandleA
GetCommandLineA
GetVersion
DeleteFileW
CopyFileA
GetCurrentProcessId
GetUserDefaultLangID
lstrcmpiW
GetModuleHandleW
GetDriveTypeA
GetOEMCP
IsDebuggerPresent
GetCurrentThreadId
GetWindowsDirectoryA
GetStartupInfoA
DeleteFileA
GlobalFindAtomW
lstrlenW
GetCurrentThread
SetCurrentDirectoryA
GetThreadLocale
GetConsoleOutputCP
MulDiv
lstrlenA
RemoveDirectoryW
lstrcmpiA
RemoveDirectoryA
GetProcessHeap

glu32

gluQuadricCallback

Sections

.text
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 79KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

177833a8f4031ffba3615016be05227d

Headers

File Characteristics

Imports

user32

gdi32

kernel32

glu32

Sections

.text Size: 13KB - Virtual size: 12KB

.rdata Size: 7KB - Virtual size: 6KB

.data Size: 79KB - Virtual size: 79KB

.rsrc Size: 11KB - Virtual size: 10KB

.text
Size: 13KB - Virtual size: 12KB

.rdata
Size: 7KB - Virtual size: 6KB

.data
Size: 79KB - Virtual size: 79KB

.rsrc
Size: 11KB - Virtual size: 10KB