25d4c957d0164e7ac8a3f75df0fbb810_JaffaCakes118

General

Target

25d4c957d0164e7ac8a3f75df0fbb810_JaffaCakes118
Size

84KB
MD5

25d4c957d0164e7ac8a3f75df0fbb810
SHA1

446f29c043a84faec70d58cf7f5bbd28e929a093
SHA256

c173fc83963d7a7141742251753ad0fa7f7b2592783e259e9001709bbcfffdee
SHA512

ca86253a789fbc3f76ca9a1f3391e9e14aa5a710e420403d3aed396eae9968afb6969c00bf357784affd01c46c896898da09863e01fa3d5a76bf03de30c06f3b
SSDEEP

1536:1wRzKb5D+bq1ZNTSUZkIhWdSzyM8yM3FD13wIBlI3DWmUAVLiuLXAN4J:1wRubd+mNTSUlhWdSzD9mABXBV7QNI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
25d4c957d0164e7ac8a3f75df0fbb810_JaffaCakes118

Files

25d4c957d0164e7ac8a3f75df0fbb810_JaffaCakes118
.exe windows:5 windows x86 arch:x86

e3192a5dcfe91540f1e98695d76f2309

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapDestroy
Heap32ListNext
Sleep
GetUserDefaultLCID
EnumResourceNamesA
CopyFileExW
Heap32ListFirst
GetModuleHandleA
TlsAlloc
GetLastError
CreateFileMappingA
CreateToolhelp32Snapshot
GetDateFormatW
CloseHandle
GetVersion
GetShortPathNameA
GetLogicalDriveStringsA
HeapCreate
CreateDirectoryW
GetCurrentDirectoryW

msvcrt

_Getdays
_strupr
_mbbtombc
_strdup
_osver
getchar
??1__non_rtti_object@@UAE@XZ
_j1
_cprintf
memcpy
_mbsnicmp
_wcreat

winmm

mixerGetDevCapsW
waveOutGetPitch
mmioStringToFOURCCA
midiConnect
waveInGetDevCapsW
mmioSetBuffer
midiStreamOpen
waveOutGetID
GetDriverModuleHandle
waveInClose
waveInStop
mciSendCommandW

opengl32

glTexGendv
glLightiv
glTexCoord4s
glTexGend
glVertex2dv
glCopyTexSubImage1D
wglUseFontBitmapsW
glGetTexGeniv
wglDescribeLayerPlane

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 75KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e3192a5dcfe91540f1e98695d76f2309

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

winmm

opengl32

Sections

.text Size: 3KB - Virtual size: 3KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 75KB - Virtual size: 75KB

.rsrc Size: 2KB - Virtual size: 2KB

.reloc Size: 512B - Virtual size: 28B

.text
Size: 3KB - Virtual size: 3KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 75KB - Virtual size: 75KB

.rsrc
Size: 2KB - Virtual size: 2KB

.reloc
Size: 512B - Virtual size: 28B