dcedc9b0b67683d351eac6fbe5a569ff_JaffaCakes118

General

Target

dcedc9b0b67683d351eac6fbe5a569ff_JaffaCakes118
Size

112KB
MD5

dcedc9b0b67683d351eac6fbe5a569ff
SHA1

ce34946438e46a2bb82349595a14ec5561c3002a
SHA256

3407876a9ab4ef56e69e5a996d7f0719b1df8c471e0cf12c829531886cafd809
SHA512

658671a0dc7c822a529fb89468ab04f6ab1021bdeb82aa23340d39d5d1a0b7a9e0a5507d316fd7793a898c460204242b5f3c1a59dec8ea3f0b9b3a3cbd5380d1
SSDEEP

1536:awKctd/QLNZAN8Oo18qd/bJUkf7wSgcx3NHodQPZBCdIRM0Ezo+DWrVR/Sk:ztd/8N6NKFtUQf1EzyiYfj/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dcedc9b0b67683d351eac6fbe5a569ff_JaffaCakes118

Files

dcedc9b0b67683d351eac6fbe5a569ff_JaffaCakes118
.exe windows:4 windows x86 arch:x86

87b8bdb9d2d5def7d3a9962c5715256d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThread
DeleteFileA
lstrlenA
CopyFileA
GetStartupInfoA
lstrlenW
GetThreadLocale
GlobalFindAtomA
GetCurrentProcess
GlobalFindAtomW
GetCurrentThreadId
DeleteFileW
GetProcessHeap
GetModuleHandleW
GetConsoleOutputCP
lstrcmpiA
GetTickCount
GetACP
RemoveDirectoryA
GetOEMCP
RemoveDirectoryW
GetCurrentProcessId
lstrcmpA
GetModuleHandleA
IsDebuggerPresent
MulDiv
SetCurrentDirectoryA
lstrcmpiW
QueryPerformanceCounter
GetDriveTypeA
GetVersion
GetCommandLineW
GetCommandLineA
GetWindowsDirectoryA
GetUserDefaultLangID
VirtualAlloc
VirtualFree

gdi32

CreateFontIndirectA
SetTextAlign
SetStretchBltMode
LineTo
RestoreDC
DeleteDC
DeleteObject
SaveDC
GetClipBox
GetDeviceCaps
RectVisible
CreatePalette
GetStockObject
GetObjectA
SelectPalette
CreateCompatibleDC
GetPixel
CreatePen
SelectObject
GetTextMetricsA
PatBlt
CreateSolidBrush
SetMapMode
SetTextColor
SetPixel

user32

GetSystemMetrics
CharNextA
TranslateMessage
GetDesktopWindow
GetParent

glu32

gluQuadricCallback

Sections

.text
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 78KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

87b8bdb9d2d5def7d3a9962c5715256d

Headers

File Characteristics

Imports

kernel32

gdi32

user32

glu32

Sections

.text Size: 13KB - Virtual size: 12KB

.rdata Size: 7KB - Virtual size: 6KB

.data Size: 78KB - Virtual size: 78KB

.rsrc Size: 13KB - Virtual size: 12KB

.text
Size: 13KB - Virtual size: 12KB

.rdata
Size: 7KB - Virtual size: 6KB

.data
Size: 78KB - Virtual size: 78KB

.rsrc
Size: 13KB - Virtual size: 12KB