3ebb251f814830bd761ce167a85f1f4e_JaffaCakes118

General

Target

3ebb251f814830bd761ce167a85f1f4e_JaffaCakes118
Size

84KB
MD5

3ebb251f814830bd761ce167a85f1f4e
SHA1

7420b2b201b38a06380095b1146fd5a2aaef651e
SHA256

e18d50be80363b5e20f5c74f427b9ee38b2e6dba91001731101fc8263d5e061d
SHA512

eae3e18949bdcd373d825379329ebc0d0eb37e259dfde0c1e4c2b838702c49a71480b27abd1ac3e9dee39701f0e154f09d711b53872f6976d58d49667f8b7f8d
SSDEEP

1536:VANK/pLp5gP5UIUISqEnCpi5dVOTwawMNEWqp7y0k1KcJUTP0LIS/n0JN+3OpFjS:VANcnkaIUPCpi5dVOT390k1vJ4kDv0J6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3ebb251f814830bd761ce167a85f1f4e_JaffaCakes118

Files

3ebb251f814830bd761ce167a85f1f4e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7af80d5b7e2be2fecc86e77724ca0671

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
GetUserDefaultUILanguage
MapViewOfFileEx
CreatePipe
GetCurrentProcess
FreeLibrary
SizeofResource
GetLocaleInfoA
TlsAlloc
GetTempPathA
GetProcessVersion
GetStringTypeExW
GetModuleHandleA
HeapAlloc
GetLastError
GetTimeFormatA
CreateDirectoryA
PulseEvent
FindResourceA
CompareFileTime
GetEnvironmentVariableA
GetFileSize
CallNamedPipeA
GetComputerNameA
ExpandEnvironmentStringsA
GetCurrentDirectoryW
MoveFileWithProgressW
EraseTape

msvcrt

_fpclass
memcpy
_memicmp
rename
__p__environ
ceil
_CIasin
_filbuf
_mbsncoll

winmm

mixerGetLineControlsA
midiConnect
midiInGetErrorTextW
midiStreamPause
midiInStart
waveOutUnprepareHeader
waveOutWrite
joyReleaseCapture

opengl32

glTexCoord4fv
glPointSize
glDrawArrays
glVertex4iv
glIndexs
glGetMapiv
glEvalCoord1d
glLoadName
wglGetDefaultProcAddress
glViewport
glFogf
glNormal3sv

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 75KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 36B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7af80d5b7e2be2fecc86e77724ca0671

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

winmm

opengl32

Sections

.text Size: 3KB - Virtual size: 3KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 75KB - Virtual size: 75KB

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 36B

.text
Size: 3KB - Virtual size: 3KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 75KB - Virtual size: 75KB

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 36B