fd3e0f8ec4c7b7190e56f70b8de87694_JaffaCakes118

General

Target

fd3e0f8ec4c7b7190e56f70b8de87694_JaffaCakes118
Size

168KB
MD5

fd3e0f8ec4c7b7190e56f70b8de87694
SHA1

a3b69ccfd5dded5f9a0c35a000037e9f5dbf4da7
SHA256

5b776d8a95acc2b72776f0fc4b69d4e0a71705fc38e9c4e4d6d19fd68c0a21e8
SHA512

e147b8de0cfb798723af84ef8b331643f246419f9a0847fbbfd417dae31d3b1e1a42424fb8dc9753dd076793f2f14109cb5f98a97c26c2e5d53636b629073a48
SSDEEP

3072:iE0UW9bj0uMqd5lBqLJB7NxDAbQOW1XH8zM:iEo0upl4LJn5LLC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fd3e0f8ec4c7b7190e56f70b8de87694_JaffaCakes118

Files

fd3e0f8ec4c7b7190e56f70b8de87694_JaffaCakes118
.exe windows:5 windows x86 arch:x86

001298005eae8be567bf62e7f2f852ca

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

CreatePen
RectVisible
CreatePalette
GetClipBox
PatBlt
GetPixel
SelectObject
GetObjectA
SetStretchBltMode
DeleteObject
CreateFontIndirectA
GetStockObject
SelectPalette
LineTo
CreateSolidBrush
GetTextMetricsA
GetDeviceCaps
SaveDC
CreateCompatibleDC
DeleteDC
SetMapMode
SetTextAlign
SetTextColor
RestoreDC

user32

GetParent
TranslateMessage
CharNextA
GetDC
GetSystemMetrics
GetDesktopWindow

kernel32

GetOEMCP
GetUserDefaultLangID
GetDriveTypeA
lstrcmpiA
DeleteFileW
lstrlenA
CopyFileA
GetTickCount
VirtualAlloc
IsDebuggerPresent
VirtualFree
lstrcmpA
GetConsoleOutputCP
SetCurrentDirectoryA
MulDiv
GetWindowsDirectoryA
GetCurrentProcess
GlobalFindAtomW
GlobalFindAtomA
GetACP
GetCommandLineA
GetCurrentThread
GetCurrentThreadId
DeleteFileA
GetStartupInfoA
RemoveDirectoryA
GetModuleHandleW
GetCommandLineW
lstrlenW
QueryPerformanceCounter
GetModuleHandleA
GetProcessHeap
lstrcmpiW
GetThreadLocale
GetCurrentProcessId

glu32

gluNurbsCallback

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Aftcmq M
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Vbegi. M
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

001298005eae8be567bf62e7f2f852ca

Headers

File Characteristics

Imports

gdi32

user32

kernel32

glu32

Sections

.text Size: 11KB - Virtual size: 11KB

Aftcmq M Size: 512B - Virtual size: 4KB

.rdata Size: 26KB - Virtual size: 25KB

Vbegi. M Size: 512B - Virtual size: 4KB

.data Size: 100KB - Virtual size: 100KB

.rsrc Size: 28KB - Virtual size: 27KB

.text
Size: 11KB - Virtual size: 11KB

Aftcmq M
Size: 512B - Virtual size: 4KB

.rdata
Size: 26KB - Virtual size: 25KB

Vbegi. M
Size: 512B - Virtual size: 4KB

.data
Size: 100KB - Virtual size: 100KB

.rsrc
Size: 28KB - Virtual size: 27KB