cefd22e99cd182acdfb95cd05bca504b_JaffaCakes118

General

Target

cefd22e99cd182acdfb95cd05bca504b_JaffaCakes118
Size

100KB
MD5

cefd22e99cd182acdfb95cd05bca504b
SHA1

cf01d745ddd055959a1174cc6735ec3a35089996
SHA256

7c6d7c551cbc82da3e6df56fc0eaaedea75eab759c294b55b1fa8f7a8749da5c
SHA512

2d5839aa864c5fdcec6a92725c72eabd45b7109b95b9c757ac47f763d8e8d740be7dd37db850fd4cd05f7bec62f775156c486f474496285eb7d74bfc45119514
SSDEEP

1536:v439Ji1X4QZC7IiZqj2RXuwtAuJgQc/Kis6mNkHb8vSGKJMIPbzZNxi:vmuX4QCRXV2QJtNNvspPbzZvi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cefd22e99cd182acdfb95cd05bca504b_JaffaCakes118

Files

cefd22e99cd182acdfb95cd05bca504b_JaffaCakes118
.exe windows:5 windows x86 arch:x86

3213f1bb38dcd0a91cf5e4c666c88ef4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDC
GetDesktopWindow
GetSystemMetrics
GetParent
CharNextA
TranslateMessage

gdi32

CreateCompatibleDC
SetStretchBltMode
RestoreDC
DeleteDC
CreateSolidBrush
SetMapMode
CreatePalette
CreateFontIndirectA
GetClipBox
CreatePen
SelectObject
SelectPalette
SetTextColor
LineTo
GetDeviceCaps
SetTextAlign
PatBlt
SaveDC
RectVisible
DeleteObject
GetTextMetricsA
GetStockObject
GetObjectA
GetPixel
GetNearestPaletteIndex

kernel32

CopyFileA
GlobalFindAtomA
GetCommandLineA
GetProcessHeap
GetWindowsDirectoryA
GetACP
DeleteFileA
MulDiv
GetConsoleOutputCP
QueryPerformanceCounter
GetModuleHandleW
GetCurrentProcessId
RemoveDirectoryA
GetCommandLineW
GetModuleHandleA
GetThreadLocale
lstrcmpiW
GetCurrentProcess
GetTickCount
GetVersion
lstrlenA
GetDriveTypeA
lstrcmpA
lstrcmpiA
GetOEMCP
GetCurrentThreadId
SetCurrentDirectoryA
DeleteFileW
GetStartupInfoA
GetUserDefaultLangID
GetCurrentThread
lstrlenW
GlobalFindAtomW
RemoveDirectoryW
IsDebuggerPresent
ExitProcess
VirtualAlloc
VirtualFree

glu32

gluQuadricCallback

Sections

.text
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 66KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

3213f1bb38dcd0a91cf5e4c666c88ef4

Headers

File Characteristics

Imports

user32

gdi32

kernel32

glu32

Sections

.text Size: 20KB - Virtual size: 20KB

.data Size: 66KB - Virtual size: 66KB

.rsrc Size: 12KB - Virtual size: 32KB

.text
Size: 20KB - Virtual size: 20KB

.data
Size: 66KB - Virtual size: 66KB

.rsrc
Size: 12KB - Virtual size: 32KB