462c2cdf56be058a2051481da7d6ea38_JaffaCakes118

General

Target

462c2cdf56be058a2051481da7d6ea38_JaffaCakes118
Size

88KB
MD5

462c2cdf56be058a2051481da7d6ea38
SHA1

6533fac71215b63f24924734c85651d25bd06629
SHA256

1dd6d2e0923651d6e96e85154ab7347ea70af85b1146a770f530b14a33add02e
SHA512

7241ddb290259916bcacfc66bfb36169991b75e0aeac37f7de1c349dae457cb787d3efdef7ded43800bbf3d3e98ccc173dbca7fef5b9d59bf23817bb477cfe01
SSDEEP

1536:2tN+FLmjBgne7QzQdExfvLtpWJdciuPjcIsFQAO7fAlDbsN3eWsfrFDMS1SUJg:qglQB2e7QOE1LtpWsic4OOD8OWArWUJg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
462c2cdf56be058a2051481da7d6ea38_JaffaCakes118

Files

462c2cdf56be058a2051481da7d6ea38_JaffaCakes118
.exe windows:4 windows x86 arch:x86

59b15295940c78ac8d776961885dc7e7

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeEnvironmentStringsW
CreateHardLinkA
GetDiskFreeSpaceExW
CreateDirectoryA
MoveFileWithProgressA
GetPrivateProfileSectionA
VirtualFree
GetModuleHandleA
VerifyVersionInfoA
GetVolumePathNameW
GetFileAttributesExA
FindCloseChangeNotification
GetPrivateProfileStringA
CopyFileExA
GetBinaryTypeW
OpenEventW
CallNamedPipeA
GetCurrentProcess
GetFileSize
GetEnvironmentVariableA
CreateFileA
SetFileAttributesA
CreateMutexA
GetLastError
EraseTape
FreeLibraryAndExitThread

msvcrt

iswdigit
memcpy
fmod
_flushall
_rmdir
__p__amblksiz
_heapwalk
_j0
clock
_HUGE
fread
__RTtypeid
??0exception@@QAE@ABQBD@Z
labs
_isatty
__p__fmode
_cprintf
_CIfmod
putwchar
_wtoi

winmm

joySetThreshold
waveOutWrite
auxGetNumDevs
mixerGetDevCapsA
waveInAddBuffer
aux32Message
sndPlaySoundW
mciSendStringA
auxGetDevCapsA
waveInGetDevCapsA
mixerSetControlDetails
waveInGetErrorTextW

opengl32

wglDescribePixelFormat
glPushMatrix
glLightModeliv
glNormal3fv
glPrioritizeTextures
glLineStipple

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 78KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 30B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

59b15295940c78ac8d776961885dc7e7

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

winmm

opengl32

Sections

.text Size: 4KB - Virtual size: 4KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 78KB - Virtual size: 78KB

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 30B

.text
Size: 4KB - Virtual size: 4KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 78KB - Virtual size: 78KB

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 30B