c104fdcf5c3ed08b1f807e787de015f6_JaffaCakes118

General

Target

c104fdcf5c3ed08b1f807e787de015f6_JaffaCakes118
Size

96KB
MD5

c104fdcf5c3ed08b1f807e787de015f6
SHA1

35acd88bf50e318385ed4171075c35f9201be5ad
SHA256

c11cc4613cd284b30031f57545a6082ae5cafc1c4b6e8aea1ac95b6d53c18662
SHA512

511b946ea7e44dd6366a90652357487b2b09577d2e3a3e2ce374670acaeceaa1701e6e830083a459acb5f782a690738f9461b043f656c86776b17042b90f849d
SSDEEP

3072:ItghI1FGHfphDoRTEIZN1xndqxY9izxqCxXe:IdjGHRhoZEIZDxndhizx1xX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c104fdcf5c3ed08b1f807e787de015f6_JaffaCakes118

Files

c104fdcf5c3ed08b1f807e787de015f6_JaffaCakes118
.exe windows:5 windows x86 arch:x86

560d7c4ab1fbb9122e76e16cde64fcf1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

CreateFontIndirectA
CreateSolidBrush
GetClipBox
SelectObject
RestoreDC
CreatePalette
CreateCompatibleDC
SetStretchBltMode
CreatePen
DeleteDC
DeleteObject
SetTextAlign
SetMapMode
SetTextColor
GetObjectA
GetTextMetricsA
GetDeviceCaps
SaveDC
RectVisible
GetPixel
GetStockObject
SelectPalette
PatBlt
GetNearestPaletteIndex
LineTo

user32

GetParent
GetDC
GetDesktopWindow
GetSystemMetrics
CharNextA
TranslateMessage

kernel32

lstrlenA
GetDriveTypeA
GetCurrentThread
lstrcmpiW
GetCurrentThreadId
GetACP
DeleteFileA
SetCurrentDirectoryA
GetTickCount
CopyFileA
GlobalFindAtomA
GetProcessHeap
lstrcmpA
IsDebuggerPresent
GetStartupInfoA
GetCommandLineW
GetConsoleOutputCP
VirtualAlloc
RemoveDirectoryA
QueryPerformanceCounter
GetCurrentProcessId
DeleteFileW
lstrcmpiA
VirtualFree
GetCurrentProcess
GetModuleHandleA
MulDiv
GetVersion
GetCommandLineA
lstrlenW
GetThreadLocale
GlobalFindAtomW
RemoveDirectoryW
GetWindowsDirectoryA
GetOEMCP
ExitProcess
GetModuleHandleW

glu32

gluQuadricCallback

Sections

.text
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 63KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

560d7c4ab1fbb9122e76e16cde64fcf1

Headers

File Characteristics

Imports

gdi32

user32

kernel32

glu32

Sections

.text Size: 20KB - Virtual size: 20KB

.data Size: 63KB - Virtual size: 62KB

.rsrc Size: 12KB - Virtual size: 11KB

.text
Size: 20KB - Virtual size: 20KB

.data
Size: 63KB - Virtual size: 62KB

.rsrc
Size: 12KB - Virtual size: 11KB