2be4f24cd5f039b7d2c07ca39a0149d8_JaffaCakes118

General

Target

2be4f24cd5f039b7d2c07ca39a0149d8_JaffaCakes118
Size

139KB
MD5

2be4f24cd5f039b7d2c07ca39a0149d8
SHA1

3329ee403389d1bddcda5c02662027e8cb6f4338
SHA256

bd41d53645d26c7137c29a0064625d15455dedc822595b71812140d9432c2256
SHA512

8d6f3a7a420e0ae8e5ba239cb631c2e5f1c89d1f27f53b45e15cb6445467de88dd7246f75fe54ebc5f378edb02dc90df0f0bdcba75fb07729f3ca8e078309eac
SSDEEP

3072:WpMHNaCo2du0uvTZGHl7YYxvgV4Et0b+V3/mL:YMHACoxa3g0b+V3/mL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2be4f24cd5f039b7d2c07ca39a0149d8_JaffaCakes118

Files

2be4f24cd5f039b7d2c07ca39a0149d8_JaffaCakes118
.exe windows:5 windows x86 arch:x86

3dffb4e9e6288a142f07eacbe09d862d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetTextMetricsA
CreatePen
SelectPalette
SelectObject
DeleteDC
GetObjectA
RestoreDC
LineTo
GetStockObject
SaveDC
SetTextColor
SetMapMode
GetPixel
GetClipBox
CreatePalette
SetStretchBltMode
CreateCompatibleDC
DeleteObject
RectVisible
CreateFontIndirectA
SetTextAlign
CreateSolidBrush
PatBlt
SetPixel
GetDeviceCaps

user32

CharNextA
TranslateMessage
GetSystemMetrics
GetDesktopWindow
GetParent

kernel32

GetWindowsDirectoryA
GetUserDefaultLangID
GetDriveTypeA
GlobalFindAtomA
lstrcmpiW
MulDiv
GetCurrentProcessId
GetThreadLocale
GetCommandLineA
GetCurrentThreadId
GetCurrentProcess
GetModuleHandleW
RemoveDirectoryA
DeleteFileW
DeleteFileA
GetVersion
GetModuleHandleA
GetOEMCP
GlobalFindAtomW
SetCurrentDirectoryA
lstrcmpA
lstrcmpiA
IsDebuggerPresent
VirtualAlloc
VirtualFree
QueryPerformanceCounter
RemoveDirectoryW
GetStartupInfoA
lstrlenW
GetConsoleOutputCP
GetCurrentThread
GetProcessHeap
GetACP
CopyFileA
lstrlenA
GetTickCount

glu32

gluQuadricCallback

Sections

.text
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 38KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

3dffb4e9e6288a142f07eacbe09d862d

Headers

File Characteristics

Imports

gdi32

user32

kernel32

glu32

Sections

.text Size: 13KB - Virtual size: 12KB

.rdata Size: 7KB - Virtual size: 6KB

.data Size: 80KB - Virtual size: 79KB

.rsrc Size: 38KB - Virtual size: 40KB

.text
Size: 13KB - Virtual size: 12KB

.rdata
Size: 7KB - Virtual size: 6KB

.data
Size: 80KB - Virtual size: 79KB

.rsrc
Size: 38KB - Virtual size: 40KB