0e8f81e4b5ccc1119906b6b394531e19_JaffaCakes118

General

Target

0e8f81e4b5ccc1119906b6b394531e19_JaffaCakes118
Size

96KB
MD5

0e8f81e4b5ccc1119906b6b394531e19
SHA1

5ce56df67e140a8ccbb53df9b589af0bfbf8d0dd
SHA256

6e06939e6781283eefdaace6ebeaa3813fff6127497aa544e476b3a47dc09eeb
SHA512

c2e637ce04fb839b7b9f5da2f48952ed6f612baca404f1a25b48550429446e62943f979c2daa2821dd61fa56a571e0e3c9fb413193cae3066b19cfd009f10b6e
SSDEEP

1536:FLVOxbewLWglHGtNGZCBWkZ2o7KiTVvt6TY3+paxVqbpo2WN:FJO71GXXsultgvp8qdo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0e8f81e4b5ccc1119906b6b394531e19_JaffaCakes118

Files

0e8f81e4b5ccc1119906b6b394531e19_JaffaCakes118
.exe windows:4 windows x86 arch:x86

bae04965b5da930af852446284d483bf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetObjectA
RestoreDC
CreateSolidBrush
DeleteDC
GetTextMetricsA
GetDeviceCaps
GetClipBox
SelectObject
SetMapMode
SetTextColor
LineTo
DeleteObject
CreateFontIndirectA
GetStockObject
SetTextAlign
SelectPalette
SaveDC
GetPixel
CreatePen
CreatePalette
CreateCompatibleDC
PatBlt
RectVisible
SetStretchBltMode
GetNearestPaletteIndex

user32

GetDC
GetParent
GetDesktopWindow
CharNextA
GetSystemMetrics
TranslateMessage

kernel32

GetCurrentThreadId
GlobalFindAtomA
lstrcmpiA
RemoveDirectoryA
GetProcessHeap
DeleteFileA
lstrlenA
GetThreadLocale
lstrlenW
GetCurrentProcess
GetOEMCP
IsDebuggerPresent
SetCurrentDirectoryA
GetModuleHandleW
CopyFileA
lstrcmpiW
GlobalFindAtomW
GetCommandLineA
GetModuleHandleA
DeleteFileW
GetConsoleOutputCP
MulDiv
QueryPerformanceCounter
GetCurrentProcessId
GetStartupInfoA
VirtualAlloc
GetDriveTypeA
VirtualFree
GetWindowsDirectoryA
GetUserDefaultLangID
GetACP
GetCommandLineW
GetTickCount
lstrcmpA
GetCurrentThread
RemoveDirectoryW
GetVersion
ExitProcess

glu32

gluQuadricCallback

Sections

.text
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 59KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bae04965b5da930af852446284d483bf

Headers

File Characteristics

Imports

gdi32

user32

kernel32

glu32

Sections

.text Size: 21KB - Virtual size: 21KB

.data Size: 59KB - Virtual size: 59KB

.rsrc Size: 14KB - Virtual size: 14KB

.text
Size: 21KB - Virtual size: 21KB

.data
Size: 59KB - Virtual size: 59KB

.rsrc
Size: 14KB - Virtual size: 14KB