eb99ef8f26af9e4a96951a26e8b58e96_JaffaCakes118

General

Target

eb99ef8f26af9e4a96951a26e8b58e96_JaffaCakes118
Size

98KB
MD5

eb99ef8f26af9e4a96951a26e8b58e96
SHA1

4f607906e24ae406a6a5db48c66eff3c611207f1
SHA256

5b8ccf163469195c00f50c0809a6bb558aecc1d21fb478725d3aadcb7fbc7f8b
SHA512

c833901fb7680a7eda513e944c5813b0ce202eaea0376c18c5b24ef9d251660dab20b1c1f01c576c1c1e1a650391674475e604462a5a2ba90d26eb9f0e840479
SSDEEP

1536:vNBP1UDP5XGojX2WbSAVsIvTir6v3nRW92BdYMu/02UADBwn/Ute985zMIf:vNBtUXmWbBKIvTiARm2BmM97aG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
eb99ef8f26af9e4a96951a26e8b58e96_JaffaCakes118

Files

eb99ef8f26af9e4a96951a26e8b58e96_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0681fad81c7651a7b5059b8e0143bdcd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CharNextA
TranslateMessage
GetParent
GetDesktopWindow
GetSystemMetrics
GetDC

kernel32

lstrlenW
GetProcessHeap
MulDiv
GetModuleHandleW
GetWindowsDirectoryA
CopyFileA
VirtualAlloc
GetDriveTypeA
GetConsoleOutputCP
lstrlenA
DeleteFileW
VirtualFree
GetModuleHandleA
GetOEMCP
GetThreadLocale
GlobalFindAtomA
GetCurrentThreadId
GlobalFindAtomW
QueryPerformanceCounter
SetCurrentDirectoryA
lstrcmpiW
GetStartupInfoA
RemoveDirectoryA
GetVersion
GetACP
lstrcmpA
GetTickCount
IsDebuggerPresent
GetCurrentThread
GetCurrentProcessId
GetCommandLineW
GetCurrentProcess
RemoveDirectoryW
lstrcmpiA
GetCommandLineA
GetUserDefaultLangID
ExitProcess

gdi32

GetClipBox
CreatePen
SaveDC
RestoreDC
SetStretchBltMode
CreateFontIndirectA
SetTextAlign
DeleteDC
SelectObject
LineTo
SetMapMode
GetDeviceCaps
GetStockObject
RectVisible
DeleteObject
GetObjectA
SetTextColor
GetTextMetricsA
CreateSolidBrush
CreatePalette
CreateCompatibleDC
PatBlt
SelectPalette
GetNearestPaletteIndex

glu32

gluQuadricCallback

Sections

.text
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 63KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0681fad81c7651a7b5059b8e0143bdcd

Headers

File Characteristics

Imports

user32

kernel32

gdi32

glu32

Sections

.text Size: 21KB - Virtual size: 21KB

.data Size: 63KB - Virtual size: 63KB

.rsrc Size: 12KB - Virtual size: 11KB

.text
Size: 21KB - Virtual size: 21KB

.data
Size: 63KB - Virtual size: 63KB

.rsrc
Size: 12KB - Virtual size: 11KB