424b8d9e4c5d185ea0e77d2d0d05a83f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

424b8d9e4c5d185ea0e77d2d0d05a83f_JaffaCakes118
Size

147KB
MD5

424b8d9e4c5d185ea0e77d2d0d05a83f
SHA1

e1d3eb4aff7731803cc98b12c5a9a044c772b284
SHA256

b1b0da9d40b7702cdfbfc199377e09ec5bc5e43eab3a881caac28dd4bf93b967
SHA512

b7c9e134bd7777383458d884ee66819b68d24e6694fea7135e63c72733fce02bc1e9f6e791abe4b029258d1bd6e63e76ef547f775b2dd91bb43c02c8cefc49de
SSDEEP

3072:414Psb/v9n/Vkfui3sOvELKV1FB8mLUwhk:4140d/ensOvEGV1FemLUwhk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
424b8d9e4c5d185ea0e77d2d0d05a83f_JaffaCakes118

Files

424b8d9e4c5d185ea0e77d2d0d05a83f_JaffaCakes118
.exe windows:5 windows x86 arch:x86

41270d51bb2a6d5fec58c0571848bc64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

opengl32

glRotatef
glTexCoord2sv
glPixelZoom
glTexCoord4dv
glMap1f
glEvalCoord1f
glTexCoord3i
glLineWidth
glTexEnvi
glTranslatef
glScaled
glTexEnvf
glTexGend
glViewport
glMapGrid1f
glNormalPointer
glMapGrid2f
glMapGrid2d
glScissor
glMapGrid1d
glTranslated

advapi32

OpenEventLogW
ReadEventLogA
RegEnumKeyExA
RegUnLoadKeyA
OpenThreadToken
RegOpenKeyA
OpenEventLogA
CloseEventLog
GetTokenInformation
ReportEventA
RegNotifyChangeKeyValue
ReadEventLogW

kernel32

LoadLibraryW
HeapFree
EnterCriticalSection
LeaveCriticalSection
GetCurrentProcess
RtlUnwind
LCMapStringW
MultiByteToWideChar
GetStringTypeW
IsProcessorFeaturePresent
HeapSize
HeapAlloc
HeapReAlloc
SetUnhandledExceptionFilter
GetPrivateProfileStructA
GetPrivateProfileSectionNamesA
WritePrivateProfileStringA
GetModuleHandleA
GetProcAddress
Sleep
GetModuleHandleW
VirtualAllocEx
TerminateProcess
IsDebuggerPresent
UnhandledExceptionFilter
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetCommandLineA
HeapSetInformation
GetStartupInfoW
EncodePointer
ExitProcess
DecodePointer
WriteFile
GetStdHandle
GetModuleFileNameW
GetModuleFileNameA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
InitializeCriticalSectionAndSpinCount
GetFileType
DeleteCriticalSection
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
GetLastError
InterlockedDecrement
HeapCreate

uxtheme

EnableThemeDialogTexture
SetThemeAppProperties
IsThemePartDefined

usp10

ScriptGetGlyphABCWidth
ScriptStringOut
ScriptCPtoX
ScriptTextOut
ScriptGetFontProperties
ScriptXtoCP

Sections

.text
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rthxg
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.cfgy
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 824B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

41270d51bb2a6d5fec58c0571848bc64

Headers

DLL Characteristics

File Characteristics

Imports

opengl32

advapi32

kernel32

uxtheme

usp10

Sections

.text Size: 37KB - Virtual size: 37KB

.rdata Size: 9KB - Virtual size: 9KB

.data Size: 4KB - Virtual size: 53KB

.rthxg Size: 84KB - Virtual size: 84KB

.cfgy Size: 5KB - Virtual size: 5KB

.rsrc Size: 1024B - Virtual size: 824B

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 37KB - Virtual size: 37KB

.rdata
Size: 9KB - Virtual size: 9KB

.data
Size: 4KB - Virtual size: 53KB

.rthxg
Size: 84KB - Virtual size: 84KB

.cfgy
Size: 5KB - Virtual size: 5KB

.rsrc
Size: 1024B - Virtual size: 824B

.reloc
Size: 4KB - Virtual size: 3KB