14fa128bec2bea8a6f7927fd4174f998_JaffaCakes118

General

Target

14fa128bec2bea8a6f7927fd4174f998_JaffaCakes118
Size

98KB
MD5

14fa128bec2bea8a6f7927fd4174f998
SHA1

d1a802c9c9345ec465c83a467f6b1d85e97e71df
SHA256

9c4e0e6af39e9b4c0e107a956735a088ab17cecf264c7ed76421209d9aa94f1d
SHA512

b1a5e050bdfa0f307439ee75890e69aec025eeb56dff22d77ffb40524f6632cd4059e0a0204e25db6e365582fd11cd0dd0d9a1df8c0323b9b0173d9df0032dab
SSDEEP

3072:06RJp+EYiHHsrYHZGnvGMJTV8mSH6lK7w:J9yKRHiv3TV8mSalK7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
14fa128bec2bea8a6f7927fd4174f998_JaffaCakes118

Files

14fa128bec2bea8a6f7927fd4174f998_JaffaCakes118
.exe windows:5 windows x86 arch:x86

e79a0c506fe90619e72607210689c2bb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SetTextColor
CreatePalette
SetTextAlign
GetStockObject
CreateSolidBrush
SelectObject
GetDeviceCaps
CreatePen
GetObjectA
LineTo
SaveDC
SetMapMode
PatBlt
DeleteObject
RectVisible
CreateCompatibleDC
GetPixel
CreateFontIndirectA
SelectPalette
DeleteDC
RestoreDC
GetTextMetricsA
SetStretchBltMode
GetClipBox
GetNearestPaletteIndex

user32

GetSystemMetrics
TranslateMessage
GetParent
CharNextA
GetDC
GetDesktopWindow

kernel32

GetWindowsDirectoryA
lstrlenW
GetCurrentThreadId
GlobalFindAtomA
GetProcessHeap
GetCurrentProcessId
RemoveDirectoryA
lstrcmpiA
GetConsoleOutputCP
GetThreadLocale
GetCurrentProcess
lstrcmpA
GlobalFindAtomW
GetVersion
GetUserDefaultLangID
GetModuleHandleW
GetTickCount
GetCommandLineW
GetDriveTypeA
GetOEMCP
lstrlenA
QueryPerformanceCounter
DeleteFileA
CopyFileA
IsDebuggerPresent
SetCurrentDirectoryA
GetACP
MulDiv
GetStartupInfoA
lstrcmpiW
GetCommandLineA
GetModuleHandleA
VirtualAlloc
VirtualFree
RemoveDirectoryW
GetCurrentThread
DeleteFileW
ExitProcess

glu32

gluQuadricCallback

Sections

.text
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 61KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e79a0c506fe90619e72607210689c2bb

Headers

File Characteristics

Imports

gdi32

user32

kernel32

glu32

Sections

.text Size: 21KB - Virtual size: 21KB

.data Size: 61KB - Virtual size: 61KB

.rsrc Size: 14KB - Virtual size: 13KB

.text
Size: 21KB - Virtual size: 21KB

.data
Size: 61KB - Virtual size: 61KB

.rsrc
Size: 14KB - Virtual size: 13KB