da1e555a039a72336fbd8f321d842780_JaffaCakes118

General

Target

da1e555a039a72336fbd8f321d842780_JaffaCakes118
Size

112KB
MD5

da1e555a039a72336fbd8f321d842780
SHA1

0a1ce138d308aac6d531ced1721567519409413a
SHA256

68ff11702c2bec7f1c32c78c7d8a9bf452310d75d709ab770c2fe3a20d0864c3
SHA512

0e0b62ea8869b8421ba8b241fbf2699bd9dab7619160f6aa31bcf0a696f18a5eafcbc3f2948f44a0c35da0992aa006c810526c612033f48404550b9dce57987a
SSDEEP

1536:WbsS/+MOcfGDdnHQaHCtfjrWydgMdGVJrHNelGS6crPMnvyXFI6muSYGbewI:w+hdnHjChjDGVJrtY6UPMnWK6msGCwI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
da1e555a039a72336fbd8f321d842780_JaffaCakes118

Files

da1e555a039a72336fbd8f321d842780_JaffaCakes118
.exe windows:5 windows x86 arch:x86

8b069a2220744c73400f1dc75558c951

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

TranslateMessage
GetParent
CharNextA
GetDesktopWindow
GetSystemMetrics

gdi32

RectVisible
GetPixel
GetDeviceCaps
CreatePen
CreateFontIndirectA
GetObjectA
GetClipBox
DeleteObject
SelectObject
DeleteDC
CreatePalette
SetTextAlign
RestoreDC
SetStretchBltMode
SelectPalette
SaveDC
LineTo
GetStockObject
CreateSolidBrush
SetMapMode
SetPixel
CreateCompatibleDC
GetTextMetricsA
SetTextColor
PatBlt

kernel32

lstrlenA
GetCommandLineA
GetACP
GetVersion
GetUserDefaultLangID
GetCurrentProcess
GetModuleHandleA
lstrcmpiA
GetStartupInfoA
QueryPerformanceCounter
DeleteFileW
IsDebuggerPresent
lstrcmpA
RemoveDirectoryA
GetCurrentProcessId
lstrlenW
GetThreadLocale
DeleteFileA
SetCurrentDirectoryA
lstrcmpiW
GlobalFindAtomW
GetCurrentThreadId
GetModuleHandleW
RemoveDirectoryW
CopyFileA
GetConsoleOutputCP
GetWindowsDirectoryA
GetCurrentThread
GetOEMCP
GlobalFindAtomA
GetCommandLineW
GetDriveTypeA
MulDiv
GetProcessHeap
VirtualAlloc
VirtualFree
GetTickCount

glu32

gluQuadricCallback

Sections

.text
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 79KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8b069a2220744c73400f1dc75558c951

Headers

File Characteristics

Imports

user32

gdi32

kernel32

glu32

Sections

.text Size: 13KB - Virtual size: 12KB

.rdata Size: 7KB - Virtual size: 6KB

.data Size: 79KB - Virtual size: 79KB

.rsrc Size: 12KB - Virtual size: 11KB

.text
Size: 13KB - Virtual size: 12KB

.rdata
Size: 7KB - Virtual size: 6KB

.data
Size: 79KB - Virtual size: 79KB

.rsrc
Size: 12KB - Virtual size: 11KB