00bd588f58f0eacebef09ae24fdbf28b_JaffaCakes118

General

Target

00bd588f58f0eacebef09ae24fdbf28b_JaffaCakes118
Size

100KB
MD5

00bd588f58f0eacebef09ae24fdbf28b
SHA1

34a86cc456693fa2270d68045f48d031fb812a1e
SHA256

f4787bff8b56102ddfaa022a5b6d58847dea3128aa5cadb5f99586194ebc7ad2
SHA512

7e96fdf81e8b3ddb8ddc289b473596e8e3cafc1987f0a3d4f266d3492187049dd7e1904547ba28cd98d34ad898f90fc5b1da2b8f36f5998e6c4074c0301f8d7c
SSDEEP

1536:aba3Y/g4MnNJP4jECNyBDewhekh8zQ4nKdxLIAd+USzoeF/eNl1LX:arDMNUNdwMkh8/rAV7eFm1L

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
00bd588f58f0eacebef09ae24fdbf28b_JaffaCakes118

Files

00bd588f58f0eacebef09ae24fdbf28b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7baedd9a22dcadb65e14f1ae13f51662

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetDeviceCaps
SelectObject
GetPixel
SelectPalette
LineTo
SetTextColor
CreateFontIndirectA
GetObjectA
SetTextAlign
RestoreDC
CreatePen
GetTextMetricsA
RectVisible
CreateSolidBrush
SaveDC
CreateCompatibleDC
SetStretchBltMode
GetClipBox
GetStockObject
CreatePalette
DeleteObject
PatBlt
DeleteDC
SetMapMode
GetNearestPaletteIndex

kernel32

GlobalFindAtomW
GetACP
lstrcmpiW
GetCommandLineA
GetCurrentProcessId
DeleteFileW
GetCurrentThreadId
GetWindowsDirectoryA
GetModuleHandleA
lstrlenA
DeleteFileA
QueryPerformanceCounter
GetVersion
GetUserDefaultLangID
GetModuleHandleW
GetDriveTypeA
GetStartupInfoA
GetProcessHeap
MulDiv
lstrcmpiA
GetTickCount
GlobalFindAtomA
RemoveDirectoryA
CopyFileA
GetCurrentProcess
GetThreadLocale
GetConsoleOutputCP
GetOEMCP
SetCurrentDirectoryA
lstrcmpA
IsDebuggerPresent
GetCommandLineW
VirtualAlloc
lstrlenW
GetCurrentThread
RemoveDirectoryW
ExitProcess

user32

GetDC
GetSystemMetrics
CharNextA
GetParent
GetDesktopWindow
TranslateMessage

glu32

gluQuadricCallback

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 66KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7baedd9a22dcadb65e14f1ae13f51662

Headers

File Characteristics

Imports

gdi32

kernel32

user32

glu32

Sections

.text Size: 20KB - Virtual size: 19KB

.data Size: 66KB - Virtual size: 65KB

.rsrc Size: 13KB - Virtual size: 12KB

.text
Size: 20KB - Virtual size: 19KB

.data
Size: 66KB - Virtual size: 65KB

.rsrc
Size: 13KB - Virtual size: 12KB