2a718db65f9e98b4c682bf1b634cb5f0_JaffaCakes118

General

Target

2a718db65f9e98b4c682bf1b634cb5f0_JaffaCakes118
Size

100KB
MD5

2a718db65f9e98b4c682bf1b634cb5f0
SHA1

8f62b4d7acd5d87c6009c052bf3e0dfeb9090b5d
SHA256

d3c313eeb943bcb9bcfb19bff43ace85074ddcf94179a8405dd10700a17bc82e
SHA512

77bb34c9f9573d19faba95d74c80745e82b83080824b0e948f29d63ea7dec895145b82d3bf8d3241605a80e5fd1486bd8a3d9c00b08d4711e44901a64dca424e
SSDEEP

1536:2LC9zVN6N/b7ZDrhq7FdkXU0OFp8V0WUXZa6RwwTnSGKfUF2gXTv6dy8bH:wCtVcN/HZcHkipPw6FTWOX2dyU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2a718db65f9e98b4c682bf1b634cb5f0_JaffaCakes118

Files

2a718db65f9e98b4c682bf1b634cb5f0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0550a2aa8a6e78f29f045aa6e3cbdab2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

CreateFontIndirectA
GetStockObject
SetTextColor
SetTextAlign
DeleteObject
SetStretchBltMode
DeleteDC
GetPixel
PatBlt
RestoreDC
GetDeviceCaps
CreatePen
GetTextMetricsA
RectVisible
SetMapMode
SelectObject
CreateSolidBrush
CreatePalette
LineTo
SelectPalette
GetClipBox
GetObjectA
SaveDC
CreateCompatibleDC
GetNearestPaletteIndex

kernel32

GetProcessHeap
lstrcmpiA
DeleteFileA
GetWindowsDirectoryA
GetCurrentThreadId
GlobalFindAtomW
GetUserDefaultLangID
CopyFileA
RemoveDirectoryA
GetCommandLineA
GetDriveTypeA
GetTickCount
GetModuleHandleW
IsDebuggerPresent
GetOEMCP
GetCommandLineW
SetCurrentDirectoryA
MulDiv
QueryPerformanceCounter
GetACP
GetCurrentThread
GetStartupInfoA
GetConsoleOutputCP
lstrcmpA
GlobalFindAtomA
GetCurrentProcess
DeleteFileW
GetVersion
GetThreadLocale
GetCurrentProcessId
lstrcmpiW
lstrlenA
RemoveDirectoryW
lstrlenW
GetModuleHandleA
ExitProcess
VirtualAlloc

user32

GetDC
CharNextA
TranslateMessage
GetParent
GetDesktopWindow
GetSystemMetrics

glu32

gluQuadricCallback

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0550a2aa8a6e78f29f045aa6e3cbdab2

Headers

File Characteristics

Imports

gdi32

kernel32

user32

glu32

Sections

.text Size: 20KB - Virtual size: 19KB

.data Size: 64KB - Virtual size: 64KB

.rsrc Size: 14KB - Virtual size: 14KB

.text
Size: 20KB - Virtual size: 19KB

.data
Size: 64KB - Virtual size: 64KB

.rsrc
Size: 14KB - Virtual size: 14KB