e133ef02ab078c0b5c413eff82618649_JaffaCakes118

General

Target

e133ef02ab078c0b5c413eff82618649_JaffaCakes118
Size

93KB
MD5

e133ef02ab078c0b5c413eff82618649
SHA1

24027e7bb6079bbdf8ff6646b7fb2940de148c5c
SHA256

47cbba7129814c8c92aac3439d64754eeb26e71bedb8355d606d5b8c1387f2ca
SHA512

ddcc8a82d5b64ea772eafd75fcbaf1e2cefb5f90f9fd43935be69d0436898903ea057d5a63fcd0ab958919a557151728767fa1d75e1a837d88371615faf7417c
SSDEEP

1536:hQiVMc33nxgs8v1MdNBjLM1AXC9mhWE5XY4CE2J0WCQR2GKqez:Jl33nF82dNGVg5XTqxlI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e133ef02ab078c0b5c413eff82618649_JaffaCakes118

Files

e133ef02ab078c0b5c413eff82618649_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2f148457f725052584e665cc6640824b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

TranslateMessage
GetDC
CharNextA
GetParent
GetDesktopWindow
GetSystemMetrics

gdi32

SetMapMode
RectVisible
CreatePen
GetClipBox
CreatePalette
CreateCompatibleDC
CreateSolidBrush
SelectObject
GetDeviceCaps
GetPixel
RestoreDC
DeleteDC
GetStockObject
SetTextAlign
LineTo
SaveDC
DeleteObject
PatBlt
GetObjectA
GetTextMetricsA
GetNearestPaletteIndex
SetStretchBltMode
SelectPalette
SetTextColor
CreateFontIndirectA

kernel32

GlobalFindAtomA
lstrlenW
lstrcmpiA
lstrcmpiW
GetThreadLocale
GetTickCount
SetCurrentDirectoryA
DeleteFileA
GetDriveTypeA
GetCurrentThreadId
GetCurrentProcess
GlobalFindAtomW
MulDiv
DeleteFileW
GetUserDefaultLangID
GetProcessHeap
GetStartupInfoA
lstrcmpA
lstrlenA
GetWindowsDirectoryA
GetCurrentThread
RemoveDirectoryW
IsDebuggerPresent
QueryPerformanceCounter
GetModuleHandleW
GetCommandLineW
GetCommandLineA
CopyFileA
GetACP
GetVersion
ExitProcess
GetOEMCP
RemoveDirectoryA
GetConsoleOutputCP
VirtualAlloc
VirtualFree
GetModuleHandleA
GetCurrentProcessId

glu32

gluQuadricCallback

Sections

.text
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 61KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2f148457f725052584e665cc6640824b

Headers

File Characteristics

Imports

user32

gdi32

kernel32

glu32

Sections

.text Size: 20KB - Virtual size: 20KB

.data Size: 61KB - Virtual size: 60KB

.rsrc Size: 11KB - Virtual size: 10KB

.text
Size: 20KB - Virtual size: 20KB

.data
Size: 61KB - Virtual size: 60KB

.rsrc
Size: 11KB - Virtual size: 10KB