15e510da5617eae18ab735a2ebe01ac1_JaffaCakes118

General

Target

15e510da5617eae18ab735a2ebe01ac1_JaffaCakes118
Size

100KB
MD5

15e510da5617eae18ab735a2ebe01ac1
SHA1

633471641c9b42199002007b0222140ad2455560
SHA256

c0aa3494d17342a5b1768351815c5f0b83b226e4e4e9592e6bb515e84a0b683f
SHA512

4730d552f41a104dd0f1a0b3c4a0f1bad35a49b4e6826e1a53f034b20ac5b7ad868d14ac2432e36bfd4f182c0fd74c41a4df1b4d915d32ebaff87fcc6e3dbae9
SSDEEP

3072:Hn3q4vTDhwcuKP9stQpPFAD/WS2w8AHMQ5HaVwdG:H9vTDzuKyiPFc/W7w8AsQpaVuG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
15e510da5617eae18ab735a2ebe01ac1_JaffaCakes118

Files

15e510da5617eae18ab735a2ebe01ac1_JaffaCakes118
.exe windows:5 windows x86 arch:x86

592179e30291a103d198e06144de137c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

TranslateMessage
CharNextA
GetDC
GetSystemMetrics
GetParent
GetDesktopWindow

kernel32

GetACP
lstrcmpA
GetModuleHandleW
GetWindowsDirectoryA
GetUserDefaultLangID
CopyFileA
GetCommandLineW
lstrlenW
GetCurrentThread
GetCurrentProcess
lstrlenA
GetModuleHandleA
GetThreadLocale
GetProcessHeap
GetCurrentThreadId
GetVersion
lstrcmpiW
RemoveDirectoryW
GetConsoleOutputCP
GetCommandLineA
IsDebuggerPresent
GetDriveTypeA
DeleteFileW
GlobalFindAtomA
ExitProcess
GetStartupInfoA
GetCurrentProcessId
SetCurrentDirectoryA
RemoveDirectoryA
lstrcmpiA
GetTickCount
MulDiv
GetOEMCP
DeleteFileA
GlobalFindAtomW
QueryPerformanceCounter
VirtualAlloc

gdi32

SetTextAlign
RectVisible
GetClipBox
SaveDC
RestoreDC
CreateCompatibleDC
SetStretchBltMode
DeleteObject
CreatePalette
PatBlt
CreateFontIndirectA
SelectPalette
GetTextMetricsA
LineTo
GetNearestPaletteIndex
SetTextColor
CreatePen
GetObjectA
DeleteDC
GetPixel
SelectObject
GetStockObject
SetMapMode
GetDeviceCaps
CreateSolidBrush

glu32

gluQuadricCallback

Sections

.text
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 66KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

592179e30291a103d198e06144de137c

Headers

File Characteristics

Imports

user32

kernel32

gdi32

glu32

Sections

.text Size: 19KB - Virtual size: 18KB

.data Size: 66KB - Virtual size: 65KB

.rsrc Size: 14KB - Virtual size: 13KB

.text
Size: 19KB - Virtual size: 18KB

.data
Size: 66KB - Virtual size: 65KB

.rsrc
Size: 14KB - Virtual size: 13KB