40206320376c30d2bb9b3fda4ebf2420_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

40206320376c30d2bb9b3fda4ebf2420_JaffaCakes118
Size

126KB
MD5

40206320376c30d2bb9b3fda4ebf2420
SHA1

ad534ea47d265781a6398526e5d2e3f8af27a75a
SHA256

b92f3e09a6af987edf3f81901ae613d2abc5b1b2eb240c2b55ec8282ba3d1daa
SHA512

0ffa875b5c607781d289365478eba7aeead5f7b69839468ef2b28d7ef3b3dcfae519d13f77d29f1608a28c12b0fa16becdd453fce4fe839bcf92fd929c25b419
SSDEEP

1536:KDv4B5C8eTHyrnQ/KSJsHklLxtkfus6OsB1gz2Qy/z/UuZxJ6kRt1bGPClXbYsNy:KDPTHZywLxtyp6fDB3/z1Jdtfl7XRdQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
40206320376c30d2bb9b3fda4ebf2420_JaffaCakes118

Files

40206320376c30d2bb9b3fda4ebf2420_JaffaCakes118
.exe windows:5 windows x86 arch:x86

42ba3044e6648ac0c5eb7d82b9bc9ee0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

ChooseColorA

opengl32

glRasterPos2fv
glReadPixels
glLightModeliv
glPopMatrix
glEnable
glTexCoord4s
glBegin

version

VerInstallFileA
VerQueryValueA
GetFileVersionInfoA
VerInstallFileW

kernel32

CreateFileW
CloseHandle
IsProcessorFeaturePresent
WriteConsoleW
SetStdHandle
GetStringTypeW
LCMapStringW
ReadFile
MultiByteToWideChar
GetCommandLineA
HeapSetInformation
GetStartupInfoW
EnterCriticalSection
LeaveCriticalSection
EncodePointer
DecodePointer
HeapAlloc
RaiseException
SetUnhandledExceptionFilter
GetProcAddress
GetModuleHandleW
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameW
GetModuleFileNameA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
InitializeCriticalSectionAndSpinCount
GetFileType
DeleteCriticalSection
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
GetLastError
InterlockedDecrement
HeapCreate
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
UnhandledExceptionFilter
IsDebuggerPresent
TerminateProcess
GetCurrentProcess
Sleep
HeapFree
HeapSize
LoadLibraryW
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
RtlUnwind
SetFilePointer
GetConsoleCP
GetConsoleMode
HeapReAlloc
FlushFileBuffers

Sections

.text
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 146KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

42ba3044e6648ac0c5eb7d82b9bc9ee0

Headers

DLL Characteristics

File Characteristics

Imports

comdlg32

opengl32

version

kernel32

Sections

.text Size: 27KB - Virtual size: 27KB

.rdata Size: 11KB - Virtual size: 11KB

.data Size: 17KB - Virtual size: 146KB

.rsrc Size: 64KB - Virtual size: 63KB

.reloc Size: 5KB - Virtual size: 42KB

.text
Size: 27KB - Virtual size: 27KB

.rdata
Size: 11KB - Virtual size: 11KB

.data
Size: 17KB - Virtual size: 146KB

.rsrc
Size: 64KB - Virtual size: 63KB

.reloc
Size: 5KB - Virtual size: 42KB