30853702517b2b85b264eea4959a9806_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

30853702517b2b85b264eea4959a9806_JaffaCakes118
Size

174KB
MD5

30853702517b2b85b264eea4959a9806
SHA1

833da1c020354e6e6a1ac46318dddb20e2069f68
SHA256

591c8e76bcd8040fbfe9ff77f9017f2d227328be68b1d1eef22bb4e862f3abc1
SHA512

6eae95370861adeef24ca0ad382df1205e4ac3bcd8b99645586520503600637833488c16bcd360564c9bfc61c2c49faae248dcb58e566752020ae98b029d5996
SSDEEP

3072:jIUjR5VkeZ8TAixqbnHc7KSGoOjRMq+hgF+TuHGTWs4PcTt2Q7qHQT8sDzJmljr1:0UjttqqbHzS2F5F+wGCsDuHQtDqH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
30853702517b2b85b264eea4959a9806_JaffaCakes118

Files

30853702517b2b85b264eea4959a9806_JaffaCakes118
.exe windows:4 windows x86 arch:x86

94dc8904d7d21e8c367f47516b92c78f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

gdi32

Rectangle
GetObjectA
SaveDC
DeleteDC
SetBkMode
DeleteObject
CreateCompatibleDC
DeleteMetaFile
CreateRectRgn
EnumFontFamiliesExA
RestoreDC
BitBlt
GetDeviceCaps
CreateSolidBrush
CreateFontIndirectA
SelectObject
GetTextExtentPoint32A
TextOutA
SetTextColor
GetStockObject
CreateCompatibleBitmap

ole32

CoTaskMemFree
ProgIDFromCLSID
StringFromCLSID

kernel32

SetTapeParameters
Sleep
ClearCommError
GetWindowsDirectoryA
GetVersion
InterlockedExchange
GetLocalTime
EnumResourceNamesA
FindClose
ExitProcess
GetCurrentProcessId
FindFirstFileA

shell32

SHGetMalloc
SHGetPathFromIDListA
SHGetSpecialFolderLocation

user32

GetWindowInfo
SetWindowLongA
LoadCursorA
GetDlgItem
FillRect
ReleaseCapture
IsWindow
MoveWindow
ReleaseDC
GetSysColor
SetWindowPos
GetDC
GetWindowLongA
SetCursor
SetCapture

advapi32

RegDeleteKeyA
RegEnumKeyExA
RegOpenKeyExA
RegCloseKey
RegCreateKeyExA
RegQueryValueExA
RegOpenKeyA
RegSetValueExA

oleacc

LresultFromObject
CreateStdAccessibleObject

winmm

mciSendCommandA
sndPlaySoundA

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

Sections

.text
Size: 144KB - Virtual size: 143KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.lib
Size: 512B - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

94dc8904d7d21e8c367f47516b92c78f

Headers

File Characteristics

Imports

gdi32

ole32

kernel32

shell32

user32

advapi32

oleacc

winmm

version

Sections

.text Size: 144KB - Virtual size: 143KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 26KB - Virtual size: 25KB

.lib Size: 512B - Virtual size: 80KB

.text
Size: 144KB - Virtual size: 143KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 26KB - Virtual size: 25KB

.lib
Size: 512B - Virtual size: 80KB