ce70809894bf2dd17b295f939c0faa73_JaffaCakes118

General

Target

ce70809894bf2dd17b295f939c0faa73_JaffaCakes118
Size

115KB
MD5

ce70809894bf2dd17b295f939c0faa73
SHA1

1a899c1a971fde274b42430d95a4b21a08b17d01
SHA256

3145b9923933b6edd5d2c317e1030ef1a93593cd7c724261e9b1615699bed729
SHA512

b5c9e0efc58958aff52b47381194f3fd91c238435a20d51d564fb1648b55645ae4bd14c95c04b141f4b8cf32f127a188e0796ba6bd8b3bec286d148541caae47
SSDEEP

3072:7TN+m5Qjr03e5ydp9c5+vpSJXAhiGxGnqkINu:7TN+ue5u9G+xSJX2iGxGnq8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ce70809894bf2dd17b295f939c0faa73_JaffaCakes118

Files

ce70809894bf2dd17b295f939c0faa73_JaffaCakes118
.exe windows:5 windows x86 arch:x86

6c6bc7412039a442a09a389717840afe

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetTextMetricsA
LineTo
RectVisible
CreateCompatibleDC
SetStretchBltMode
SetMapMode
GetDeviceCaps
GetObjectA
CreateSolidBrush
RestoreDC
SetTextAlign
CreateFontIndirectA
PatBlt
SaveDC
DeleteDC
CreatePalette
DeleteObject
SelectPalette
GetStockObject
CreatePen
GetPixel
SetTextColor
SelectObject
SetPixel

user32

TranslateMessage
CharNextA
GetDesktopWindow
GetParent
GetSystemMetrics

kernel32

GetVersion
lstrcmpiA
GetCurrentThread
GetCurrentThreadId
GetCurrentProcessId
GetModuleHandleA
lstrlenW
GetCommandLineW
GetModuleHandleW
VirtualAlloc
lstrcmpiW
lstrlenA
IsDebuggerPresent
GetTickCount
GetWindowsDirectoryA
VirtualFree
MulDiv
GetDriveTypeA
GetConsoleOutputCP
SetCurrentDirectoryA
GetProcessHeap
GetStartupInfoA
GetUserDefaultLangID
GetCommandLineA
GlobalFindAtomA
CopyFileA
GetCurrentProcess
DeleteFileW
QueryPerformanceCounter
GetOEMCP
GetThreadLocale
lstrcmpA
RemoveDirectoryA
GlobalFindAtomW
RemoveDirectoryW
GetACP

glu32

gluQuadricCallback

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 79KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6c6bc7412039a442a09a389717840afe

Headers

File Characteristics

Imports

gdi32

user32

kernel32

glu32

Sections

.text Size: 12KB - Virtual size: 12KB

.rdata Size: 7KB - Virtual size: 6KB

.data Size: 79KB - Virtual size: 79KB

.rsrc Size: 15KB - Virtual size: 14KB

.text
Size: 12KB - Virtual size: 12KB

.rdata
Size: 7KB - Virtual size: 6KB

.data
Size: 79KB - Virtual size: 79KB

.rsrc
Size: 15KB - Virtual size: 14KB