e08f33b6fc644896789219a968201a0a_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

e08f33b6fc644896789219a968201a0a_JaffaCakes118
Size

66KB
MD5

e08f33b6fc644896789219a968201a0a
SHA1

8db512f6ec9333dd9c0131884823747584f306d7
SHA256

863d1069fde4dbbbedaf5f7d27db53994a3f2f8d8045af8aff8a2f655d1c9da4
SHA512

9cfc514428f4bb84c134dfb3800d83dd2186d3b5af2a5933ebb01bcf875ad44245e21fc5b07da6ececa4b5b3b71368041c401c6c4b44fd3be366a09f71e511df
SSDEEP

1536:24xMTSsRVH7sPhAd9ctxWN/LsKPirpJAmRhPCunmAEJX:24xuN9gPhA7/vPipPP5TEJX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e08f33b6fc644896789219a968201a0a_JaffaCakes118

Files

e08f33b6fc644896789219a968201a0a_JaffaCakes118
.exe windows:1 windows x86 arch:x86

6b420b872a278dbd318bb88bc065d1d9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

opengl32

glClear
glNormal3s
GlmfEndGlsBlock
glRects
glRasterPos2dv
glColor3b
glEvalPoint1
glDepthFunc
wglUseFontOutlinesA
glPopAttrib
wglCreateContext
glEvalCoord1dv
glVertex3iv
glTexCoord1i
glEvalCoord2d
glRasterPos3sv
glTexGenf
glTexImage2D
glDebugEntry
wglDescribePixelFormat
glRasterPos2s
glEvalCoord1fv

dssenh

CPExportKey
CPSignHash
CPGetProvParam
CPGetUserKey
CPGenRandom
CPCreateHash
CPGenKey
CPDecrypt
CPSetHashParam
CPImportKey
CPEncrypt
CPDeriveKey
CPHashSessionKey
CPGetKeyParam
CPSetProvParam
CPHashData
CPDestroyKey
CPAcquireContext
CPVerifySignature
CPDuplicateKey
CPGetHashParam
CPDuplicateHash
CPSetKeyParam

kernel32

CreateHardLinkA
LoadLibraryA
GetTempFileNameA
GetTimeFormatW
GetConsoleCharType
DebugActiveProcess
lstrcat
_lwrite
RequestWakeupLatency
GetEnvironmentStringsA
EnumSystemGeoID
ReadFileEx
IsBadWritePtr
BuildCommDCBA
SetCommConfig
WriteTapemark
FileTimeToSystemTime
GetConsoleCommandHistoryLengthW
FindNextVolumeA
EnumerateLocalComputerNamesW
LCMapStringA
ReplaceFileW
GetStringTypeA
VerifyVersionInfoA
WritePrivateProfileStringA
lstrcpynW
GetPrivateProfileStructW
FreeEnvironmentStringsA
ConvertThreadToFiber
SetEnvironmentVariableW
OpenJobObjectA
MapViewOfFile
LZStart
GetProcessTimes
GetDiskFreeSpaceA
GetCommConfig
EnumDateFormatsExA
VirtualAlloc
GlobalFindAtomA
BuildCommDCBAndTimeoutsW
ReadConsoleInputExW
GlobalCompact
GetCalendarInfoA
PurgeComm
GetCommModemStatus
CopyFileExW
GetConsoleAliasExesLengthA
ExpungeConsoleCommandHistoryW

Sections

.text
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.xdata
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 25KB - Virtual size: 200KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6b420b872a278dbd318bb88bc065d1d9

Headers

File Characteristics

Imports

opengl32

dssenh

kernel32

Sections

.text Size: 19KB - Virtual size: 18KB

.xdata Size: 19KB - Virtual size: 19KB

.idata Size: 25KB - Virtual size: 200KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 19KB - Virtual size: 18KB

.xdata
Size: 19KB - Virtual size: 19KB

.idata
Size: 25KB - Virtual size: 200KB

.rsrc
Size: 1KB - Virtual size: 1KB