306f362dd946bc78e10700675c5ebdbd_JaffaCakes118

General

Target

306f362dd946bc78e10700675c5ebdbd_JaffaCakes118
Size

96KB
MD5

306f362dd946bc78e10700675c5ebdbd
SHA1

645527b09627178a5e02a661415a647ea9d5ae6a
SHA256

b99730a5830d6f49f6395cf58f2dfb0056a5f3b603d543591006ece9ad11b89c
SHA512

5d86047aa858bfa3137be7fa1c7538c2536a0adff41fea976fcde998344e6257b445d51f6320927378c7112ae38160f389d34f77ed4f42537a8fd453f8978a4f
SSDEEP

1536:J0qPv/6w/jhbvIS3r4VNwOOKxiMDi7pdp0lcKkTkgWJnLvw0:J0qPv/6mjhkjNwSx9tpeFWpLV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
306f362dd946bc78e10700675c5ebdbd_JaffaCakes118

Files

306f362dd946bc78e10700675c5ebdbd_JaffaCakes118
.exe windows:5 windows x86 arch:x86

d79182f6f1eea2e69f6a9a29bd9e15c4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetObjectA
CreatePen
SetTextAlign
GetTextMetricsA
GetStockObject
DeleteDC
GetClipBox
SetMapMode
PatBlt
CreateFontIndirectA
CreatePalette
DeleteObject
SelectPalette
RestoreDC
CreateCompatibleDC
SaveDC
LineTo
CreateSolidBrush
SelectObject
GetPixel
GetDeviceCaps
RectVisible
SetTextColor
SetStretchBltMode
GetNearestPaletteIndex

user32

GetDC
GetDesktopWindow
GetParent
TranslateMessage
GetSystemMetrics
CharNextA

kernel32

lstrlenW
SetCurrentDirectoryA
GetThreadLocale
GetCurrentProcess
GetACP
GetProcessHeap
lstrcmpiW
GetVersion
DeleteFileW
GetStartupInfoA
GetCommandLineW
GetOEMCP
GlobalFindAtomW
lstrcmpA
CopyFileA
GetDriveTypeA
GetWindowsDirectoryA
GetModuleHandleW
GetConsoleOutputCP
GetUserDefaultLangID
lstrlenA
DeleteFileA
GetTickCount
GetCurrentThreadId
GlobalFindAtomA
IsDebuggerPresent
RemoveDirectoryA
lstrcmpiA
QueryPerformanceCounter
GetCurrentProcessId
GetModuleHandleA
GetCurrentThread
RemoveDirectoryW
ExitProcess
GetCommandLineA
VirtualAlloc

glu32

gluQuadricCallback

Sections

.text
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 63KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

d79182f6f1eea2e69f6a9a29bd9e15c4

Headers

File Characteristics

Imports

gdi32

user32

kernel32

glu32

Sections

.text Size: 21KB - Virtual size: 21KB

.data Size: 63KB - Virtual size: 63KB

.rsrc Size: 10KB - Virtual size: 30KB

.text
Size: 21KB - Virtual size: 21KB

.data
Size: 63KB - Virtual size: 63KB

.rsrc
Size: 10KB - Virtual size: 30KB