119c3a532baf7968c2051d8d4eadeeff_JaffaCakes118

General

Target

119c3a532baf7968c2051d8d4eadeeff_JaffaCakes118
Size

115KB
MD5

119c3a532baf7968c2051d8d4eadeeff
SHA1

6be6cd009b53390175db3e0c9e35ab1ce0578a30
SHA256

b049c74dea9a5af4a79bf6371b9acf4015147980431935364c16be0e10ca46a7
SHA512

f4736a76f388f40e06af767073979660113bab2651889bc00c76a02c3bc0ef996663d32e2c7a26d1ad9c4ee80264a48e4f5c5b08323195fcf07e855fe2116562
SSDEEP

1536:8zS3azDAhyg7+jS+oEvu9WLT5C8xZSNYZKiHM7kCm2fSgSbvJJR:rYAD7+jboIiWbu0HM7lSlX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
119c3a532baf7968c2051d8d4eadeeff_JaffaCakes118

Files

119c3a532baf7968c2051d8d4eadeeff_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d5f75c287084604a7d2b053b2786f4ed

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetObjectA
GetTextMetricsA
CreatePalette
GetPixel
PatBlt
SetTextAlign
CreateFontIndirectA
RestoreDC
DeleteDC
SaveDC
RectVisible
SelectObject
CreatePen
DeleteObject
CreateSolidBrush
CreateCompatibleDC
SetTextColor
LineTo
GetStockObject
SetStretchBltMode
GetClipBox
SelectPalette
GetDeviceCaps
SetMapMode
SetPixel

user32

TranslateMessage
CharNextA
GetParent
GetSystemMetrics
GetDesktopWindow

kernel32

GetACP
GetVersion
VirtualAlloc
lstrcmpA
DeleteFileA
GlobalFindAtomW
IsDebuggerPresent
VirtualFree
GetModuleHandleW
GetCurrentThread
GetModuleHandleA
GetOEMCP
DeleteFileW
lstrlenW
GetUserDefaultLangID
CopyFileA
QueryPerformanceCounter
GetCurrentProcessId
lstrcmpiA
GetProcessHeap
RemoveDirectoryA
GetStartupInfoA
GetWindowsDirectoryA
MulDiv
SetCurrentDirectoryA
GetDriveTypeA
GetThreadLocale
GetCurrentProcess
GetCommandLineW
GetCommandLineA
GlobalFindAtomA
GetCurrentThreadId
GetConsoleOutputCP
RemoveDirectoryW
GetTickCount
lstrcmpiW
lstrlenA

glu32

gluQuadricCallback

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 79KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d5f75c287084604a7d2b053b2786f4ed

Headers

File Characteristics

Imports

gdi32

user32

kernel32

glu32

Sections

.text Size: 14KB - Virtual size: 13KB

.rdata Size: 7KB - Virtual size: 7KB

.data Size: 79KB - Virtual size: 79KB

.rsrc Size: 13KB - Virtual size: 12KB

.text
Size: 14KB - Virtual size: 13KB

.rdata
Size: 7KB - Virtual size: 7KB

.data
Size: 79KB - Virtual size: 79KB

.rsrc
Size: 13KB - Virtual size: 12KB