56d648332e5b499ca02ad3b4eeb03cbb_JaffaCakes118

General

Target

56d648332e5b499ca02ad3b4eeb03cbb_JaffaCakes118
Size

100KB
MD5

56d648332e5b499ca02ad3b4eeb03cbb
SHA1

20b451a26047b675830bbb10fcfa2baefd579718
SHA256

dba20b83521e77cd118e09f83f075c312255bcd8b439a22ff730d4449a960dd0
SHA512

b20b4d89577c8f384fe9149482d8e746026945b31a5f0433746a9022aa1e695140f5a838886596ffcd6de208391c56fabd84c11b89dd69b0e89bc3ae108c1fe6
SSDEEP

1536:j+BrTNGiEwQfUVJythU5Splnw+rsVICKJs9DaauIysNmTpI+NnVUzUN:d3jhlw+rsVI9JKP46ynKzU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
56d648332e5b499ca02ad3b4eeb03cbb_JaffaCakes118

Files

56d648332e5b499ca02ad3b4eeb03cbb_JaffaCakes118
.exe windows:5 windows x86 arch:x86

a0f5686add9b45cbe96918bd904cec1f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetStockObject
RectVisible
DeleteDC
CreatePen
GetTextMetricsA
SaveDC
LineTo
GetObjectA
SelectPalette
SetTextAlign
SetTextColor
CreateSolidBrush
DeleteObject
GetDeviceCaps
PatBlt
SetStretchBltMode
CreatePalette
GetClipBox
CreateFontIndirectA
SetMapMode
SelectObject
CreateCompatibleDC
RestoreDC
GetPixel
GetNearestPaletteIndex

kernel32

GetTickCount
DeleteFileA
GetProcessHeap
lstrlenA
RemoveDirectoryA
GetUserDefaultLangID
GetACP
CopyFileA
GetCurrentThreadId
GetWindowsDirectoryA
GetCommandLineA
lstrcmpiW
GetConsoleOutputCP
lstrcmpiA
GetCommandLineW
lstrcmpA
GetCurrentThread
VirtualAlloc
GetModuleHandleW
QueryPerformanceCounter
VirtualFree
GetVersion
SetCurrentDirectoryA
GetCurrentProcessId
GetCurrentProcess
lstrlenW
GlobalFindAtomW
GetModuleHandleA
MulDiv
IsDebuggerPresent
GetThreadLocale
DeleteFileW
GetDriveTypeA
GlobalFindAtomA
GetStartupInfoA
GetOEMCP
RemoveDirectoryW
ExitProcess

user32

CharNextA
GetDesktopWindow
TranslateMessage
GetDC
GetSystemMetrics
GetParent

glu32

gluQuadricCallback

Sections

.text
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 63KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a0f5686add9b45cbe96918bd904cec1f

Headers

File Characteristics

Imports

gdi32

kernel32

user32

glu32

Sections

.text Size: 21KB - Virtual size: 21KB

.data Size: 63KB - Virtual size: 63KB

.rsrc Size: 14KB - Virtual size: 13KB

.text
Size: 21KB - Virtual size: 21KB

.data
Size: 63KB - Virtual size: 63KB

.rsrc
Size: 14KB - Virtual size: 13KB