291b0a8d48360958e581f59e7e228a69_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

291b0a8d48360958e581f59e7e228a69_JaffaCakes118
Size

78KB
MD5

291b0a8d48360958e581f59e7e228a69
SHA1

cc397a6bb0c995a2cea0e634abedb9ec4cfc8278
SHA256

bcd5fad7401556c06ad561fb4a62bd8feb9001191a3fde0da9ce0ba6f082474e
SHA512

340b21ba48ffc7faf033d2cbbc3040b9d339aff1371741cc86453f3e3b24c1be322dc1e04dfeab14101c5f7f95767e500822b2ebe0a7ff552027e29d3314dbe8
SSDEEP

1536:H132K4q434BK27KQ4xN7j4gR44OYKxSKUKGr4gLG/KMdzYDKf4qBgK45Bs++GR8a:HKZmDrm8cBgOXt1nTzeJahgASli

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
291b0a8d48360958e581f59e7e228a69_JaffaCakes118

Files

291b0a8d48360958e581f59e7e228a69_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c5d49434af834d3e5752a66cc0baa11e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

opengl32

glVertex4i
glRecti
glEnd
glGetPixelMapuiv
glDepthFunc
glCallList
glScaled
glLineWidth
glBindTexture
glMapGrid2f
glClipPlane
glScissor
glColor3d
glIndexi
glColor3uiv
glIndexubv
glScalef
glTexCoord1s
glTexEnvfv
glTexCoord2iv
glReadBuffer
glTexEnviv
glRasterPos3d
glColor4b
glPixelMapuiv
glNormalPointer
glRasterPos4sv
glTexCoord1i

glu32

gluTessEndContour
gluNewQuadric
gluNewNurbsRenderer
gluBuild2DMipmaps
gluNurbsCallback
gluNurbsSurface
gluScaleImage
gluNewTess
gluNurbsProperty
gluErrorString
gluDeleteQuadric
gluTessCallback
gluTessBeginContour
gluTessProperty
gluEndSurface
gluDeleteNurbsRenderer
gluTessVertex
gluQuadricOrientation
gluBeginCurve
gluTessNormal
gluGetTessProperty
gluBeginTrim
gluGetNurbsProperty
gluErrorUnicodeStringEXT
gluGetString
gluOrtho2D
gluTessEndPolygon
gluDisk

ole32

OleGetIconOfFile
OleRegGetUserType
CoCreateFreeThreadedMarshaler
CreateDataAdviseHolder
CreateAntiMoniker
CoDosDateTimeToFileTime
StringFromCLSID
CoReleaseMarshalData
CoTreatAsClass
StringFromGUID2
GetRunningObjectTable
CoGetMarshalSizeMax
CoTaskMemFree
CoRegisterClassObject
CoRevokeClassObject
CoAddRefServerProcess
CoCreateGuid
ProgIDFromCLSID
CreateClassMoniker
OleGetIconOfClass
OleSetAutoConvert
CoSuspendClassObjects
CreatePointerMoniker
CoGetMalloc
CoIsHandlerConnected
GetClassFile
CoGetObject

oleaut32

OleIconToCursor

comctl32

ord5
DestroyPropertySheetPage
InitializeFlatSB
CreateToolbarEx
PropertySheetW
ord16
ord6
CreatePropertySheetPageA
ord2
PropertySheetA
InitCommonControlsEx
ord17

shlwapi

StrRStrIW
StrToIntA
StrRChrW
StrChrW
StrChrIW
StrCSpnA

msvcrt

_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__getmainargs
__set_app_type
_except_handler3
_controlfp
_acmdln
exit
_XcptFilter
_exit
__p__fmode

kernel32

VirtualAlloc
GetProcAddress
ExitProcess
GetStartupInfoA
GetModuleHandleA

Sections

.text
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 374KB - Virtual size: 440KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c5d49434af834d3e5752a66cc0baa11e

Headers

File Characteristics

Imports

opengl32

glu32

ole32

oleaut32

comctl32

shlwapi

msvcrt

kernel32

Sections

.text Size: 10KB - Virtual size: 9KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 374KB - Virtual size: 440KB

.rsrc Size: 5KB - Virtual size: 5KB

.text
Size: 10KB - Virtual size: 9KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 374KB - Virtual size: 440KB

.rsrc
Size: 5KB - Virtual size: 5KB