30a1423eeae9cb4e9dd222eb57e551ea_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

30a1423eeae9cb4e9dd222eb57e551ea_JaffaCakes118
Size

312KB
MD5

30a1423eeae9cb4e9dd222eb57e551ea
SHA1

0480cb121fe90d4c771252153b4be0aaa278d3f6
SHA256

cf127ae075e053cacaf761ae08cd985c5bb1c8fa36748b233e21cf77b75fe833
SHA512

269c8f84a393f434f62e0f5e97372004b59526145ff08094163db475b6659b00454b91409f23064104eec8657b702fbd1b0fcb9809c717f638509d3abba45f13
SSDEEP

6144:kqG9ECGRri0q/voAjGof/0waDObKpHnwWHmlSiZHAtCAeb0xT:kdFwNmgAjL0jD2sHnwWHmlSq2Ctw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
30a1423eeae9cb4e9dd222eb57e551ea_JaffaCakes118

Files

30a1423eeae9cb4e9dd222eb57e551ea_JaffaCakes118
.exe windows:5 windows x86 arch:x86

eea7b4e88dda12e7d64113f2c269bbe9

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

gdiplus

GdipGetImageDecodersSize
GdipGetImageEncoders
GdipDisposeImage
GdiplusShutdown
GdipFree
GdipCreateBitmapFromFile
GdipGetImageRawFormat
GdipCreateBitmapFromFileICM
GdiplusStartup
GdipGetImageEncodersSize
GdipAlloc
GdipCreateBitmapFromHBITMAP
GdipGetPropertySize
GdipSaveImageToStream

gdi32

GetTextExtentPoint32W
PolyBezier
GetDIBits
SetDIBits
GetObjectW
SetMapMode
CreateDCW
SetDIBitsToDevice
SelectObject
FillRgn
SetBkColor
GetTextMetricsW
EnumFontFamiliesW
DeleteObject
SetDIBColorTable
CreatePen
CreateDIBSection
UnrealizeObject
LPtoDP
GetBkMode
RoundRect
CreatePalette
SetROP2
CreatePolygonRgn
SaveDC
CreateFontIndirectW
GetNearestPaletteIndex
Rectangle
Polygon
SetPixel
BitBlt
RealizePalette
MoveToEx
SetBkMode
ExtFloodFill
StretchBlt
SetPaletteEntries
CreateRectRgnIndirect
SetTextColor
GetTextColor
CreatePatternBrush
SetViewportExtEx
PatBlt
PtVisible
TranslateCharsetInfo
Ellipse
PlayMetaFile
DeleteDC
SetTextAlign
GetPaletteEntries
OffsetRgn

user32

PtInRect
GetWindowRect
LoadIconW
SendMessageW
DestroyWindow
GetDlgItemInt
TranslateMessage
SetCapture
EndPaint
LoadMenuW
GetWindowDC
HideCaret
GetClassInfoW
MsgWaitForMultipleObjects
GetWindow
PostMessageW
EnableScrollBar
WindowFromPoint
InflateRect
OffsetRect
GetSysColor
IsRectEmpty
wvsprintfW
RedrawWindow
SetRectEmpty
GetClientRect
GrayStringW
CopyRect
GetSubMenu
RegisterClipboardFormatW
GetCapture
EqualRect
CheckDlgButton
ScreenToClient
IsWindowVisible
CheckMenuItem
GetMenu
CharNextW
SendDlgItemMessageW
InvalidateRect
EnableMenuItem
DestroyIcon
GetCaretPos
RemoveMenu
IntersectRect
LoadCursorW
DestroyCaret
GetDC
ShowCaret
ShowCursor
FrameRect
IsMenu
UnionRect
ReleaseCapture
MessageBoxW
GetKeyState
GetFocus
LoadStringW
SystemParametersInfoW
SetWindowTextW
DrawFocusRect
GetCursorPos
ClientToScreen
SetTimer
KillTimer
GetUpdateRect
TabbedTextOutW
DrawTextW
wsprintfW
SetRect
ValidateRect

kernel32

LoadLibraryA
GetCurrentProcess
GetNumberFormatW
SetEndOfFile
InterlockedExchange
GetFileTime
lstrcpyW
GetTempPathW
GetThreadLocale
MultiByteToWideChar
VirtualFree
GetCurrentProcessId
InterlockedDecrement
lstrlenA
GetModuleHandleA
VirtualAlloc
GetProcessHeaps
GetTimeFormatW
TerminateProcess
HeapAlloc
FindFirstFileW
CreateDirectoryW
GetProcAddress
FreeLibrary
CloseHandle
GetDateFormatW
GetProcessHeap
HeapSize
GetFileAttributesW
IsDBCSLeadByte
MulDiv
GlobalUnlock
lstrcmpiW
lstrcpynW
RaiseException
GetModuleHandleW
InterlockedIncrement
LoadLibraryW
LocalAlloc
GetFileSize
CreateFileW
FileTimeToSystemTime
FindClose
lstrcmpW
GetLocaleInfoW

ole32

CLSIDFromString
CoGetInterfaceAndReleaseStream
CoInitialize
PropVariantClear
CoUninitialize
CoMarshalInterThreadInterfaceInStream

Sections

.text
Size: 193KB - Virtual size: 193KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 108KB - Virtual size: 796KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

eea7b4e88dda12e7d64113f2c269bbe9

Headers

DLL Characteristics

File Characteristics

Imports

gdiplus

gdi32

user32

kernel32

ole32

Sections

.text Size: 193KB - Virtual size: 193KB

.data Size: 10KB - Virtual size: 9KB

.rsrc Size: 108KB - Virtual size: 796KB

.text
Size: 193KB - Virtual size: 193KB

.data
Size: 10KB - Virtual size: 9KB

.rsrc
Size: 108KB - Virtual size: 796KB