0d72abc9f2eafd157fe393cbd87df786_JaffaCakes118

General

Target

0d72abc9f2eafd157fe393cbd87df786_JaffaCakes118
Size

112KB
MD5

0d72abc9f2eafd157fe393cbd87df786
SHA1

e502e2e860923bc7e8fb437213ad1dec5f4fb460
SHA256

db2190cd91ba9dad5c6a54627c2a982de779dec2301eb4df26fc3881f7005af8
SHA512

279f3c3995063ee596cd371e9048c58d4f22fd04878c6e40da9057a920b2959af27224b6d31cc1a6da869ebf9e28037e2b743a224d1b7706124a390a314d827d
SSDEEP

3072:SFU+tsS1Nl/jncQUXNUF7nEOOtvtQdv4/YwTBF:l+tsS1NlzN4UF7nwvts4AwT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0d72abc9f2eafd157fe393cbd87df786_JaffaCakes118

Files

0d72abc9f2eafd157fe393cbd87df786_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c9a091388bac7bc5c3faa4c540dd2c7e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

DeleteDC
GetDeviceCaps
GetTextMetricsA
CreatePen
DeleteObject
GetPixel
SetTextAlign
GetObjectA
PatBlt
SelectObject
RectVisible
SaveDC
CreateFontIndirectA
GetClipBox
GetStockObject
SetMapMode
SetPixel
SelectPalette
RestoreDC
LineTo
CreatePalette
CreateCompatibleDC
SetTextColor
CreateSolidBrush
SetStretchBltMode

user32

TranslateMessage
GetParent
CharNextA
GetSystemMetrics
GetDesktopWindow

kernel32

GetCommandLineW
DeleteFileW
lstrcmpiW
GetProcessHeap
MulDiv
GetStartupInfoA
GetWindowsDirectoryA
RemoveDirectoryW
lstrlenA
GlobalFindAtomW
lstrcmpA
GetOEMCP
GetModuleHandleA
lstrlenW
GetUserDefaultLangID
RemoveDirectoryA
lstrcmpiA
GlobalFindAtomA
GetModuleHandleW
IsDebuggerPresent
GetCommandLineA
GetCurrentProcessId
GetThreadLocale
QueryPerformanceCounter
GetCurrentThread
GetACP
GetVersion
GetCurrentProcess
GetConsoleOutputCP
GetCurrentThreadId
GetTickCount
DeleteFileA
CopyFileA
SetCurrentDirectoryA
VirtualAlloc
VirtualFree
GetDriveTypeA

glu32

gluQuadricCallback

Sections

.text
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 78KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c9a091388bac7bc5c3faa4c540dd2c7e

Headers

File Characteristics

Imports

gdi32

user32

kernel32

glu32

Sections

.text Size: 13KB - Virtual size: 12KB

.rdata Size: 7KB - Virtual size: 7KB

.data Size: 78KB - Virtual size: 78KB

.rsrc Size: 12KB - Virtual size: 12KB

.text
Size: 13KB - Virtual size: 12KB

.rdata
Size: 7KB - Virtual size: 7KB

.data
Size: 78KB - Virtual size: 78KB

.rsrc
Size: 12KB - Virtual size: 12KB