0822deff6a6cd2f0c1f025d491c93530_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0822deff6a6cd2f0c1f025d491c93530_JaffaCakes118
Size

52KB
MD5

0822deff6a6cd2f0c1f025d491c93530
SHA1

169f216d55f0cbaf97b4aa86b7fba510df7ff1a4
SHA256

1bfac112d3551a3cb372cb2c02f70e875075290f9e720b246e7f2d9232535b97
SHA512

ab935669a5054f49a863dde0b2e25122152823a2de71d8637e7479852ae053a4d143e3fa96f9a96e49b36ea447eb41702ea5858639ece687ad712c2c91060161
SSDEEP

768:icppHhOjEFXSim4G/nbMLbXCRX1ZxSIT5pxDU5vqDDDSN9Wn:icppysC4Eb+AX1fvpxh2G

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0822deff6a6cd2f0c1f025d491c93530_JaffaCakes118

Files

0822deff6a6cd2f0c1f025d491c93530_JaffaCakes118
.exe windows:4 windows x86 arch:x86

72afe9dc3698b47517587c0aa2d64674

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

opengl32

glColor3uiv
glTexSubImage2D
glVertex4iv
glVertex2f
glPolygonMode
glEvalCoord1d
glEvalPoint2
glMaterialiv
glGetError
glDisableClientState
glRotated
glTexCoord3dv
glColor3d
glColor3fv

glu32

gluNurbsProperty
gluTessEndContour
gluQuadricNormals
gluGetTessProperty
gluBeginSurface
gluPwlCurve
gluTessNormal
gluBuild1DMipmaps
gluEndTrim
gluNurbsCurve
gluLookAt

ole32

OleCreateLinkToFileEx
CoGetStdMarshalEx
OleSetMenuDescriptor
CreateClassMoniker
CoFreeAllLibraries
OleNoteObjectVisible
StringFromCLSID
CoReleaseMarshalData
OleCreateLink
StgCreatePropSetStg
OleGetIconOfClass
OleDestroyMenuDescriptor
CreateOleAdviseHolder
OleRegGetMiscStatus

kernel32

VirtualQueryEx
GlobalSize
CreateEventA
VirtualLock
InitializeCriticalSection
LocalFlags
ReleaseMutex
HeapUnlock
OpenMutexA
VirtualProtectEx
GetLocaleInfoA
OpenSemaphoreA
GetModuleHandleA
GetProcAddress
GetExitCodeThread
VirtualAlloc
GetLastError
LocalHandle
GetTickCount
CloseHandle
GetProcessHeap
GetCurrentProcess
GetModuleFileNameA
LocalLock
ResetEvent
GetStartupInfoA

usp10

ScriptBreak
ScriptTextOut
ScriptStringOut
ScriptStringFree
ScriptIsComplex
ScriptStringAnalyse
ScriptString_pcOutChars
ScriptGetFontProperties
ScriptString_pSize
ScriptStringXtoCP
ScriptGetGlyphABCWidth
ScriptApplyLogicalWidth

msvcrt

_exit
_XcptFilter
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 972B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

72afe9dc3698b47517587c0aa2d64674

Headers

File Characteristics

Imports

opengl32

glu32

ole32

kernel32

usp10

msvcrt

Sections

.text Size: 8KB - Virtual size: 8KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 3KB - Virtual size: 59KB

.rsrc Size: 35KB - Virtual size: 35KB

.reloc Size: 1024B - Virtual size: 972B

.text
Size: 8KB - Virtual size: 8KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 3KB - Virtual size: 59KB

.rsrc
Size: 35KB - Virtual size: 35KB

.reloc
Size: 1024B - Virtual size: 972B