d6bbcd725f962c7a5641fe375ff3a122_JaffaCakes118

General

Target

d6bbcd725f962c7a5641fe375ff3a122_JaffaCakes118
Size

95KB
MD5

d6bbcd725f962c7a5641fe375ff3a122
SHA1

443d0f3dce8b44a9d9580761a34106fd5de08ca5
SHA256

786a856147a4f2da5b416613a314a022bfa393f37575de543146016a63fe977b
SHA512

33408189c1f1308057f8644b2298402a9749d87a5ee8a45ea1d0d226ab175e4f64faa72e7fe1093100c6ace64ee1208e5c483fea0497c19c8ed1961373b2ae62
SSDEEP

1536:oGtHr5Hlc4DrDzWuFTzrlAr7OVaAi9IyADoUa18SoWs8HexjNwDIwI:ztHrZ24zKMXHGPAUf1l7+wDIw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d6bbcd725f962c7a5641fe375ff3a122_JaffaCakes118

Files

d6bbcd725f962c7a5641fe375ff3a122_JaffaCakes118
.exe windows:4 windows x86 arch:x86

73bdd5bb82c08e9b69da3c680295ebf0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsDebuggerPresent
lstrcmpiW
GetModuleHandleA
CopyFileA
GlobalFindAtomW
DeleteFileW
GetCurrentProcessId
GetConsoleOutputCP
GetTickCount
GetCommandLineA
lstrcmpiA
GetThreadLocale
GetVersion
GetUserDefaultLangID
QueryPerformanceCounter
RemoveDirectoryA
GetACP
lstrlenW
lstrlenA
GetCurrentThreadId
GetWindowsDirectoryA
lstrcmpA
GetProcessHeap
DeleteFileA
GetDriveTypeA
GetModuleHandleW
GetCurrentThread
GetOEMCP
GlobalFindAtomA
SetCurrentDirectoryA
GetCommandLineW
RemoveDirectoryW
GetCurrentProcess
MulDiv
ExitProcess
GetStartupInfoA
VirtualAlloc

gdi32

SelectObject
RestoreDC
DeleteDC
LineTo
PatBlt
DeleteObject
GetPixel
CreateSolidBrush
SetTextColor
SetMapMode
GetTextMetricsA
SelectPalette
GetObjectA
RectVisible
GetDeviceCaps
GetClipBox
SetTextAlign
CreatePen
SaveDC
CreateFontIndirectA
CreateCompatibleDC
CreatePalette
SetStretchBltMode
GetNearestPaletteIndex
GetStockObject

user32

GetDesktopWindow
GetSystemMetrics
TranslateMessage
GetParent
GetDC
CharNextA

glu32

gluQuadricCallback

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 61KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

73bdd5bb82c08e9b69da3c680295ebf0

Headers

File Characteristics

Imports

kernel32

gdi32

user32

glu32

Sections

.text Size: 20KB - Virtual size: 19KB

.data Size: 61KB - Virtual size: 60KB

.rsrc Size: 13KB - Virtual size: 13KB

.text
Size: 20KB - Virtual size: 19KB

.data
Size: 61KB - Virtual size: 60KB

.rsrc
Size: 13KB - Virtual size: 13KB