d13da08733243ff148d20403a693e37d_JaffaCakes118

General

Target

d13da08733243ff148d20403a693e37d_JaffaCakes118
Size

113KB
MD5

d13da08733243ff148d20403a693e37d
SHA1

0fedfac6c67aa4c66a35a84b0c19430a527d74c9
SHA256

2deb6e1b2d7b22cd1666eea489f0f33a0f842b01a536d445ffd8de1771d56104
SHA512

4bc609fd6c22aecd6570c36916522f5fece1990fbafde8d7b05596a2e03aaf91443b3cab42b4741c66c820a357a45c68626a76ffd7797611aa2008f2d72df717
SSDEEP

1536:eaP+VoD7tA2mk7XfkyDZASs9P7oKT8OwkYZOqwSXzVeBrrRB:VTtA5gZASKToW85ZOqZ+rR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d13da08733243ff148d20403a693e37d_JaffaCakes118

Files

d13da08733243ff148d20403a693e37d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

fd502b64dc778c3c1b5a9521cb8fcfb0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

CreateCompatibleDC
GetObjectA
DeleteObject
GetTextMetricsA
LineTo
SetStretchBltMode
CreateSolidBrush
GetPixel
CreatePen
CreatePalette
GetStockObject
SelectPalette
SetMapMode
SetTextColor
SaveDC
SetTextAlign
DeleteDC
CreateFontIndirectA
GetClipBox
RectVisible
SelectObject
GetDeviceCaps
RestoreDC
SetPixel
PatBlt

kernel32

QueryPerformanceCounter
GetDriveTypeA
GetCurrentThread
GetVersion
GetStartupInfoA
GetCurrentThreadId
lstrcmpA
lstrlenW
GetOEMCP
RemoveDirectoryA
GetProcessHeap
IsDebuggerPresent
lstrlenA
GetModuleHandleA
GetConsoleOutputCP
lstrcmpiA
GetCurrentProcessId
GetCommandLineW
DeleteFileW
GetThreadLocale
GlobalFindAtomW
GetUserDefaultLangID
GlobalFindAtomA
GetCommandLineA
SetCurrentDirectoryA
GetWindowsDirectoryA
GetTickCount
lstrcmpiW
GetACP
DeleteFileA
GetCurrentProcess
MulDiv
RemoveDirectoryW
CopyFileA
GetModuleHandleW
VirtualAlloc
VirtualFree

user32

GetSystemMetrics
GetDesktopWindow
GetParent
CharNextA
TranslateMessage

glu32

gluQuadricCallback

Sections

.text
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fd502b64dc778c3c1b5a9521cb8fcfb0

Headers

File Characteristics

Imports

gdi32

kernel32

user32

glu32

Sections

.text Size: 13KB - Virtual size: 12KB

.rdata Size: 7KB - Virtual size: 6KB

.data Size: 80KB - Virtual size: 79KB

.rsrc Size: 12KB - Virtual size: 12KB

.text
Size: 13KB - Virtual size: 12KB

.rdata
Size: 7KB - Virtual size: 6KB

.data
Size: 80KB - Virtual size: 79KB

.rsrc
Size: 12KB - Virtual size: 12KB