f68008057ff5dbc67c938b3f5f68a54d_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

f68008057ff5dbc67c938b3f5f68a54d_JaffaCakes118
Size

252KB
MD5

f68008057ff5dbc67c938b3f5f68a54d
SHA1

03347080f09deb58f7059a4774da66c3f71890c3
SHA256

d91807db680531bc9f41c4d56229558f39f04c0adef4448be9d5b4691eb919e8
SHA512

0baccb957a9dc955868226665f6fd7bd938d18191e6c364c5c062887378001b0ea286921cca005005cdda307455afc1e70590a18695aa7921a76cb60bff3b9d5
SSDEEP

3072:Wk/G2ulyaBYjv/1AnfZoGe9vf95ZKzrde6z2CTaK124CSbUeG7zMCnZf9v:W72+GL9An+ZfPA1SKklSbUHzMCZf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f68008057ff5dbc67c938b3f5f68a54d_JaffaCakes118

Files

f68008057ff5dbc67c938b3f5f68a54d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3d17db69bf44bffee79e9d9bbcfd99a0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

RaiseException
SetEndOfFile
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
LoadLibraryA
GetOEMCP
GetACP
GetCPInfo
MultiByteToWideChar
CreateFileA
FlushFileBuffers
SetStdHandle
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
CompareStringA
CompareStringW
TerminateThread
VirtualProtect
CreateThread
Sleep
GetEnvironmentVariableA
SetFilePointer
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
ReadFile
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetVersionExA
WriteFile
CloseHandle
GetLastError
GetProcAddress
HeapFree
HeapSize
HeapReAlloc
GetVersion
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
GetLocalTime
GetSystemTime
GetTimeZoneInformation
HeapAlloc
RtlUnwind
GetCurrentProcess
TerminateProcess
ExitProcess
GetModuleFileNameA
SetEnvironmentVariableA

user32

DispatchMessageA
GetMessageA
MessageBoxA
GetClientRect
GetDC
PeekMessageA
SetFocus
ShowWindow
CreateWindowExA
GetSystemMetrics
RegisterClassA
LoadCursorA
LoadIconA
DefWindowProcA
PostQuitMessage
EndPaint
BeginPaint
PostMessageA
TranslateMessage

gdi32

SwapBuffers
ChoosePixelFormat
SetPixelFormat

gdiplus

GdipDrawRectangleI
GdipDeleteGraphics
GdipDisposeImage
GdipGraphicsClear
GdipDrawImageRectI
GdiplusStartup
GdipCreatePen1
GdipDeletePen
GdipDeleteBrush
GdipGetImageGraphicsContext
GdipCreateBitmapFromScan0
GdipDrawImageRect
GdipDeleteFont
GdipFree
GdipAlloc
GdipCloneBrush
GdipCreateSolidFill
GdipClonePen
GdipCreateFromHDC
GdipDeleteFontFamily
GdipCreateFont
GdipCreateFontFamilyFromName
GdipLoadImageFromFile
GdipLoadImageFromFileICM
GdipCloneImage
GdipGetImageWidth
GdiplusShutdown
GdipGetImageHeight
GdipDrawString

opengl32

glHint
glClear
glCullFace
glClearColor
glEndList
glNewList
glGenLists
glPopMatrix
glColor4fv
glEnd
glVertex3f
glBegin
glPushMatrix
glColor3f
glGetFloatv
glTexCoord2f
glNormal3f
glPolygonMode
glGetIntegerv
glBindTexture
glTexParameteri
glTexImage2D
glGenTextures
glDisable
glCallList
glViewport
glMatrixMode
glLoadIdentity
glTranslatef
wglCreateContext
wglMakeCurrent
glEnable

glu32

gluPerspective

Sections

.text
Size: 56KB - Virtual size: 53KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 132KB - Virtual size: 138KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3d17db69bf44bffee79e9d9bbcfd99a0

Headers

File Characteristics

Imports

kernel32

user32

gdi32

gdiplus

opengl32

glu32

Sections

.text Size: 56KB - Virtual size: 53KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 132KB - Virtual size: 138KB

.rsrc Size: 52KB - Virtual size: 51KB

.text
Size: 56KB - Virtual size: 53KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 132KB - Virtual size: 138KB

.rsrc
Size: 52KB - Virtual size: 51KB