ff4e9195c281fff365593cf547b3d79a_JaffaCakes118

General

Target

ff4e9195c281fff365593cf547b3d79a_JaffaCakes118
Size

116KB
MD5

ff4e9195c281fff365593cf547b3d79a
SHA1

04c3e56b82e54a0adb75c2a10db6e4aba5a5a4a2
SHA256

13e228c71a2c2fbe96de015c31aa3592c233accfc42201eeacce0b1da4a7d591
SHA512

32a59581cc19e4fb0a3d3eb2641f1738d8fc512fdb21807635ded2f2e527368db6e7c7c742546462a5dcc78379851566e125cebdd1f2745564bcd006bbc51160
SSDEEP

1536:O2RLM6Tuop8vap7vHPOeM85DyDG8nsfLEirVYDeyFEEJWBxYdAhEWYg6:Xu+8CHPOP85DyD+LEUYDeyFEc0xbEWY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ff4e9195c281fff365593cf547b3d79a_JaffaCakes118

Files

ff4e9195c281fff365593cf547b3d79a_JaffaCakes118
.exe windows:5 windows x86 arch:x86

07334ed5a6fa303d5ab8d9d0f1b452ff

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SetMapMode
CreatePen
GetObjectA
CreatePalette
CreateCompatibleDC
DeleteDC
SetTextColor
CreateFontIndirectA
GetClipBox
SetTextAlign
SelectObject
GetDeviceCaps
GetStockObject
DeleteObject
SelectPalette
SetStretchBltMode
CreateSolidBrush
PatBlt
LineTo
SaveDC
SetPixel
GetTextMetricsA
RestoreDC
RectVisible
GetPixel

kernel32

GetTickCount
IsDebuggerPresent
lstrcmpiW
GetWindowsDirectoryA
GetCurrentThread
lstrcmpA
lstrlenA
GetVersion
GetUserDefaultLangID
CopyFileA
QueryPerformanceCounter
RemoveDirectoryA
GetModuleHandleA
GetModuleHandleW
MulDiv
lstrlenW
GetCurrentThreadId
GetACP
GetCommandLineA
VirtualAlloc
GlobalFindAtomW
VirtualFree
GetStartupInfoA
GlobalFindAtomA
RemoveDirectoryW
GetConsoleOutputCP
SetCurrentDirectoryA
GetThreadLocale
GetProcessHeap
GetOEMCP
DeleteFileA
DeleteFileW
GetCommandLineW
GetCurrentProcess
GetCurrentProcessId
GetDriveTypeA

user32

GetParent
GetSystemMetrics
CharNextA
GetDesktopWindow
TranslateMessage

glu32

gluQuadricCallback

Sections

.text
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 78KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

07334ed5a6fa303d5ab8d9d0f1b452ff

Headers

File Characteristics

Imports

gdi32

kernel32

user32

glu32

Sections

.text Size: 13KB - Virtual size: 12KB

.rdata Size: 7KB - Virtual size: 6KB

.data Size: 78KB - Virtual size: 78KB

.rsrc Size: 16KB - Virtual size: 36KB

.text
Size: 13KB - Virtual size: 12KB

.rdata
Size: 7KB - Virtual size: 6KB

.data
Size: 78KB - Virtual size: 78KB

.rsrc
Size: 16KB - Virtual size: 36KB