3c1bfab54332096acc2e82538f08df70_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3c1bfab54332096acc2e82538f08df70_JaffaCakes118
Size

324KB
MD5

3c1bfab54332096acc2e82538f08df70
SHA1

2a80191be6e3c41ec93690331c4d3a611a9ddf3a
SHA256

c03ae939d112d113f126d97412f2e4d05b8b7c0720125a498dc1a0ef8c0f3936
SHA512

dfb0d588098aaa579579086b83bceefdd41ef1a6fe33f6b4cd0ded2a69adb87a156f40cfe5a22ef060f1add95e4556dbd786444ddc88f8994d9899929b7635c9
SSDEEP

6144:ah0KWtCbq4jlHgLiDHm0kTW5K2Vq+MZ+qjuUf9/j4uOhTngcj0+ED7BKROcUw9:aFWdox62HwT0K2Vq+MU3uOhTngcvI7Be

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3c1bfab54332096acc2e82538f08df70_JaffaCakes118

Files

3c1bfab54332096acc2e82538f08df70_JaffaCakes118
.exe windows:5 windows x86 arch:x86

529d760bcbb06f21fe75641023d2077e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

fmifs

ChkdskEx
QueryDeviceInformation
EnableVolumeCompression
Format
SetLabel
ComputeFmMediaType
FormatEx2
FormatEx
QueryDeviceInformationByHandle
QueryFileSystemName
Extend
Chkdsk
QueryLatestFileSystemVersion
DiskCopy
QueryAvailableFileSystemFormat
QuerySupportedMedia

opengl32

wglGetDefaultProcAddress
glMap1d
wglSwapLayerBuffers
glRasterPos3i
glRectdv
glTexCoord4dv
glVertex2dv
glTexCoord1sv
glEvalMesh2
glFrontFace
glIndexsv
GlmfEndPlayback
GlmfPlayGlsRecord
glVertex2s
glTexEnvfv
glEvalMesh1
glGetError
glBegin
glLoadIdentity
glIsTexture
glRasterPos4i
glRasterPos2fv
glReadBuffer
glAreTexturesResident
glRasterPos4f

ole32

OleConvertOLESTREAMToIStorage
HICON_UserMarshal
PropSysAllocString
CoDisconnectObject
CoFreeLibrary
PropVariantCopy
WriteStringStream
IsValidPtrIn
WdtpInterfacePointer_UserUnmarshal
HGLOBAL_UserSize
OleCreateFromDataEx
HkOleRegisterObject
STGMEDIUM_UserUnmarshal
ReadStringStream
OleCreateFromData
ProgIDFromCLSID
HPALETTE_UserMarshal
ReadOleStg
CLSIDFromProgID
HMENU_UserFree
CoGetInterceptor
CoResumeClassObjects
UtConvertDvtd32toDvtd16
HENHMETAFILE_UserSize

kernel32

TryEnterCriticalSection
VirtualAlloc
LoadLibraryA
GetModuleHandleA
FindAtomA
SetThreadIdealProcessor
SetMessageWaitingIndicator
_lopen
FindNextVolumeW
SetFirmwareEnvironmentVariableW
RegisterConsoleVDM
GetConsoleOutputCP
GetLongPathNameW
GetConsoleInputExeNameW
GetSystemInfo
LocalAlloc
GetTimeZoneInformation
Thread32First
SetSystemTimeAdjustment

d3dxof

DirectXFileCreate

Sections

.text
Size: 181KB - Virtual size: 181KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 120KB - Virtual size: 538KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

529d760bcbb06f21fe75641023d2077e

Headers

File Characteristics

Imports

fmifs

opengl32

ole32

kernel32

d3dxof

Sections

.text Size: 181KB - Virtual size: 181KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 120KB - Virtual size: 538KB

.rsrc Size: 18KB - Virtual size: 18KB

.text
Size: 181KB - Virtual size: 181KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 120KB - Virtual size: 538KB

.rsrc
Size: 18KB - Virtual size: 18KB