d3ae29e3719d5fd68d31bf3c4d9eac30_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

d3ae29e3719d5fd68d31bf3c4d9eac30_JaffaCakes118
Size

252KB
MD5

d3ae29e3719d5fd68d31bf3c4d9eac30
SHA1

8739e0f1800b0a89c48e400bd36a705c39bf1c4d
SHA256

bc1c02ee6e4d533847e586205284c7cc4d69909b2bd9c6781c92c766384405f2
SHA512

db2cb32a5dd1fbb061e1755a48b1b9b1c35ba01a2405e5f26f5afb4f0ead8ccee3f001e6d8178e134ac65eb7b5b2eed064c978ef0fd72188805eefa8245130bf
SSDEEP

6144:Qkp72oN2xBsSc6HHLHEKrNhKb1prrTYJR/zMCZf:QkX+sgHLEKphKb1pnYb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
d3ae29e3719d5fd68d31bf3c4d9eac30_JaffaCakes118

Files

d3ae29e3719d5fd68d31bf3c4d9eac30_JaffaCakes118
.exe windows:4 windows x86 arch:x86

54855f3b7bbaaf754928e69435959ae8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareStringA
SetEndOfFile
RaiseException
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
LoadLibraryA
GetOEMCP
GetACP
GetCPInfo
CreateFileA
FlushFileBuffers
SetStdHandle
MultiByteToWideChar
SetFilePointer
IsBadCodePtr
IsBadReadPtr
CompareStringW
VirtualProtect
GetWindowsDirectoryA
MoveFileA
GetEnvironmentVariableA
lstrlenA
lstrcpynA
GetModuleFileNameA
TerminateThread
SetUnhandledExceptionFilter
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
WriteFile
ReadFile
CloseHandle
GetLastError
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetVersionExA
HeapSize
HeapReAlloc
HeapFree
GetProcAddress
GetVersion
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
GetCurrentProcess
TerminateProcess
ExitProcess
GetLocalTime
GetSystemTime
GetTimeZoneInformation
HeapAlloc
RtlUnwind
CreateThread
Sleep
SetEnvironmentVariableA

user32

GetClientRect
MessageBoxA
DispatchMessageA
TranslateMessage
PeekMessageA
SetFocus
ShowWindow
CreateWindowExA
GetSystemMetrics
RegisterClassA
LoadCursorA
LoadIconA
DefWindowProcA
PostQuitMessage
EndPaint
BeginPaint
PostMessageA
GetMessageA
GetDC

gdi32

SwapBuffers
ChoosePixelFormat
SetPixelFormat

advapi32

RegCloseKey
RegCreateKeyA
RegSetValueExA

gdiplus

GdipDrawRectangleI
GdipDeleteGraphics
GdipDisposeImage
GdipGraphicsClear
GdipDrawImageRectI
GdiplusStartup
GdipCreatePen1
GdipDeletePen
GdipDeleteBrush
GdipGetImageGraphicsContext
GdipCreateBitmapFromScan0
GdipDrawImageRect
GdipDeleteFont
GdipFree
GdipAlloc
GdipCloneBrush
GdipCreateSolidFill
GdipClonePen
GdipCreateFromHDC
GdipDeleteFontFamily
GdipCreateFont
GdipCreateFontFamilyFromName
GdipLoadImageFromFile
GdipLoadImageFromFileICM
GdipCloneImage
GdipGetImageWidth
GdiplusShutdown
GdipGetImageHeight
GdipDrawString

opengl32

glClear
glEnable
glCullFace
glClearColor
glEndList
glNewList
glGenLists
glPopMatrix
glColor4fv
glEnd
glVertex3f
glBegin
glPushMatrix
glColor3f
glGetFloatv
glTexCoord2f
glNormal3f
glPolygonMode
glGetIntegerv
glBindTexture
glTexParameteri
glTexImage2D
glGenTextures
glDisable
glCallList
glViewport
glMatrixMode
glLoadIdentity
glTranslatef
wglCreateContext
wglMakeCurrent
glHint

glu32

gluPerspective

Sections

.text
Size: 56KB - Virtual size: 54KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 132KB - Virtual size: 138KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 52KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

54855f3b7bbaaf754928e69435959ae8

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

gdiplus

opengl32

glu32

Sections

.text Size: 56KB - Virtual size: 54KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 132KB - Virtual size: 138KB

.rsrc Size: 52KB - Virtual size: 50KB

.text
Size: 56KB - Virtual size: 54KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 132KB - Virtual size: 138KB

.rsrc
Size: 52KB - Virtual size: 50KB