de88253802092f601d62909661f7f7a7_JaffaCakes118

General

Target

de88253802092f601d62909661f7f7a7_JaffaCakes118
Size

113KB
MD5

de88253802092f601d62909661f7f7a7
SHA1

16cc25e80dafd3eccb381dbdeb7216681aa26934
SHA256

a0782fa3bb6d430fc91bf2efcd869bb0333ec6c1b4d05f0d0f3d19b6bae0e5ea
SHA512

7eaeecc06ccbf8b6373ed5f52226fe7c28c27f6d2e7cb87cc0d63887af8ce7a21b7b299bd4493763af4c9c404a630fd4db7e3c1e0c01d7c75451c79fea740405
SSDEEP

1536:VtAFYHk7ewq/lOVAHjGe+dMvaNlt5MzUN4ZQMGeDXJIf2RC02oqV/o:jQYE7hX0Dd+MGuJIekok/o

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
de88253802092f601d62909661f7f7a7_JaffaCakes118

Files

de88253802092f601d62909661f7f7a7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

842536a9045aed030028151360b40844

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SelectPalette
SetTextColor
LineTo
SaveDC
RestoreDC
SetMapMode
DeleteObject
RectVisible
GetPixel
GetTextMetricsA
CreateCompatibleDC
GetStockObject
SetTextAlign
CreatePalette
SelectObject
DeleteDC
CreateFontIndirectA
PatBlt
GetDeviceCaps
CreateSolidBrush
GetObjectA
CreatePen
SetStretchBltMode
GetClipBox
SetPixel

user32

GetDesktopWindow
GetParent
TranslateMessage
CharNextA
GetSystemMetrics

kernel32

GetThreadLocale
GetConsoleOutputCP
GetVersion
DeleteFileW
GetCurrentThread
GlobalFindAtomA
CopyFileA
GetCurrentProcess
RemoveDirectoryA
lstrlenA
lstrcmpiA
MulDiv
GetStartupInfoA
GetWindowsDirectoryA
QueryPerformanceCounter
GetOEMCP
lstrlenW
GetCurrentProcessId
GetACP
lstrcmpA
GetModuleHandleW
GetProcessHeap
GetCommandLineW
VirtualAlloc
VirtualFree
GetModuleHandleA
GlobalFindAtomW
GetDriveTypeA
GetCurrentThreadId
GetCommandLineA
GetUserDefaultLangID
SetCurrentDirectoryA
lstrcmpiW
IsDebuggerPresent
RemoveDirectoryW
GetTickCount
DeleteFileA

glu32

gluQuadricCallback

Sections

.text
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

842536a9045aed030028151360b40844

Headers

File Characteristics

Imports

gdi32

user32

kernel32

glu32

Sections

.text Size: 13KB - Virtual size: 12KB

.rdata Size: 7KB - Virtual size: 6KB

.data Size: 80KB - Virtual size: 79KB

.rsrc Size: 12KB - Virtual size: 12KB

.text
Size: 13KB - Virtual size: 12KB

.rdata
Size: 7KB - Virtual size: 6KB

.data
Size: 80KB - Virtual size: 79KB

.rsrc
Size: 12KB - Virtual size: 12KB