3b24cd8590489fad1b7070f6537c3d75_JaffaCakes118

General

Target

3b24cd8590489fad1b7070f6537c3d75_JaffaCakes118
Size

108KB
MD5

3b24cd8590489fad1b7070f6537c3d75
SHA1

0c438f74589e8360ca2b8b9a07e5483cc058a8c3
SHA256

0db00eeac7f297ac03a4ddb1c2d7d08278df410d8233bc5c21a95eb27242a3be
SHA512

e431d18dc4b213f840f0f0bca3c18393dc1be7a33776b2aae294a1c91e2e956952fe18f39f7904fd6660611d8da7ec26f23d5a0430710f4e93233a5f6c532cef
SSDEEP

1536:gRcCvTyxVdAcT1YngSThBhy1B3Q8wdwqmoEFbxzTWUsD4E2taSAfcWtERzFvz8yp:geLRKBhUPwrmB9zrE/SAf6FvQyK4w

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3b24cd8590489fad1b7070f6537c3d75_JaffaCakes118

Files

3b24cd8590489fad1b7070f6537c3d75_JaffaCakes118
.exe windows:4 windows x86 arch:x86

98e11db2c61cb566341f785541803f52

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDesktopWindow
TranslateMessage
GetParent
GetDC
CharNextA
GetSystemMetrics

gdi32

GetTextMetricsA
SetStretchBltMode
SetTextColor
LineTo
PatBlt
CreateFontIndirectA
GetDeviceCaps
CreatePalette
CreatePen
GetPixel
RectVisible
SelectPalette
DeleteObject
SetTextAlign
SaveDC
CreateSolidBrush
SetMapMode
DeleteDC
GetStockObject
GetNearestPaletteIndex
CreateCompatibleDC
GetClipBox
GetObjectA
RestoreDC
SelectObject

kernel32

GetModuleHandleA
GetConsoleOutputCP
DeleteFileA
GetVersion
GlobalFindAtomW
CopyFileA
GetOEMCP
GetWindowsDirectoryA
lstrcmpA
GetCurrentProcessId
SetCurrentDirectoryA
MulDiv
GetProcessHeap
GetModuleHandleW
RemoveDirectoryA
lstrlenW
GetCommandLineW
lstrcmpiA
IsDebuggerPresent
GetThreadLocale
lstrcmpiW
GlobalFindAtomA
GetUserDefaultLangID
GetCurrentThreadId
DeleteFileW
lstrlenA
GetStartupInfoA
RemoveDirectoryW
GetCurrentProcess
GetCurrentThread
GetDriveTypeA
QueryPerformanceCounter
GetTickCount
ExitProcess
GetCommandLineA
GetACP
VirtualAlloc

glu32

gluQuadricCallback

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

98e11db2c61cb566341f785541803f52

Headers

File Characteristics

Imports

user32

gdi32

kernel32

glu32

Sections

.text Size: 20KB - Virtual size: 19KB

.data Size: 72KB - Virtual size: 72KB

.rsrc Size: 14KB - Virtual size: 14KB

.text
Size: 20KB - Virtual size: 19KB

.data
Size: 72KB - Virtual size: 72KB

.rsrc
Size: 14KB - Virtual size: 14KB