d7128ff26b908e777a487a9384687d71_JaffaCakes118

General

Target

d7128ff26b908e777a487a9384687d71_JaffaCakes118
Size

101KB
MD5

d7128ff26b908e777a487a9384687d71
SHA1

4553f62e7916a1f835bc5e3ff0ed3da27fabff12
SHA256

0ac95ba4d63641f99552ffcf82c62aa24b6e6b0d7811fa35b174da8a2dd32deb
SHA512

229b866ba1cb003026c77d532422e746f6945ffe4784361ab5787f42a4fb9b8733be3aa16c20c9ca11af75fc1ce0d9f2efbde49474d41824b36967e3d7badc1d
SSDEEP

1536:685u/N7fj+vfMseZ46mysllLQusXZftnpR1G2fEL0zD/SbYHbz2IUySG:hu/1sqsPLQusXDE2fH/tX2IUv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d7128ff26b908e777a487a9384687d71_JaffaCakes118

Files

d7128ff26b908e777a487a9384687d71_JaffaCakes118
.exe windows:5 windows x86 arch:x86

b0f344040569777813d2402969c9ed77

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDC
GetParent
GetSystemMetrics
TranslateMessage
GetDesktopWindow
CharNextA

gdi32

CreatePen
GetStockObject
GetPixel
GetClipBox
CreateCompatibleDC
SetTextColor
SetTextAlign
SetMapMode
GetTextMetricsA
GetDeviceCaps
GetObjectA
RectVisible
PatBlt
RestoreDC
SelectObject
CreateFontIndirectA
CreatePalette
SetStretchBltMode
DeleteObject
LineTo
DeleteDC
CreateSolidBrush
SelectPalette
SaveDC
GetNearestPaletteIndex

kernel32

GetCurrentThread
CopyFileA
lstrlenA
GetStartupInfoA
SetCurrentDirectoryA
GetModuleHandleW
GetConsoleOutputCP
GetCommandLineA
GetACP
RemoveDirectoryA
DeleteFileW
lstrcmpA
MulDiv
GetOEMCP
lstrcmpiA
GlobalFindAtomA
GetModuleHandleA
IsDebuggerPresent
QueryPerformanceCounter
GetCommandLineW
GetThreadLocale
GetProcessHeap
GetVersion
GetUserDefaultLangID
lstrcmpiW
GetWindowsDirectoryA
VirtualAlloc
GetDriveTypeA
VirtualFree
GetCurrentThreadId
RemoveDirectoryW
GetCurrentProcess
GetCurrentProcessId
DeleteFileA
lstrlenW
GlobalFindAtomW
ExitProcess
GetTickCount

glu32

gluQuadricCallback

Sections

.text
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b0f344040569777813d2402969c9ed77

Headers

File Characteristics

Imports

user32

gdi32

kernel32

glu32

Sections

.text Size: 21KB - Virtual size: 20KB

.data Size: 68KB - Virtual size: 67KB

.rsrc Size: 11KB - Virtual size: 11KB

.text
Size: 21KB - Virtual size: 20KB

.data
Size: 68KB - Virtual size: 67KB

.rsrc
Size: 11KB - Virtual size: 11KB