30e22fcae5ab6d9fb05b1e1ae875b0b7_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

30e22fcae5ab6d9fb05b1e1ae875b0b7_JaffaCakes118
Size

509KB
MD5

30e22fcae5ab6d9fb05b1e1ae875b0b7
SHA1

5431af3d2d2f38bf443e3c1ecd70a57359704f70
SHA256

a732be1290992a215807b7443725a3bd418451669c253b3d2697e1a679738407
SHA512

1ffb8835701882ae5a4f78f58a4b1b3b6789a57e063c32765143af13dd97e0c382aa87408a7d5530281cb043a8dee131eaf9c99d2e5801d1bb538a742ff90ea2
SSDEEP

12288:dhUpyFjM5aWrgAWDvxyKOMjNcyKO37oz:dh2QY5XwUnMjNc1Aoz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
30e22fcae5ab6d9fb05b1e1ae875b0b7_JaffaCakes118

Files

30e22fcae5ab6d9fb05b1e1ae875b0b7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

54e23fa8534b6a40d720eec9715b89c5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetLastError
FreeLibrary
EnumResourceTypesA
GetProcAddress
OpenMutexA
LocalFileTimeToFileTime
GetStartupInfoA
GetTickCount
ExitProcess
QueryPerformanceCounter
LCMapStringA
GetTimeFormatA
GetDateFormatA
InitializeCriticalSection
FindNextFileA
FileTimeToDosDateTime
RtlUnwind
HeapSize
GetFileType
CompareStringA
HeapAlloc
FlushConsoleInputBuffer
HeapDestroy
GetCurrentThread
EnterCriticalSection
VirtualFree
GetAtomNameW
IsValidCodePage
GetCPInfo
HeapCreate
LocalSize
TerminateProcess
MultiByteToWideChar
IsValidLocale
DeleteCriticalSection
GetLocaleInfoW
WriteConsoleW
SetEnvironmentVariableA
GetCommandLineA
GetCurrentProcessId
CompareStringW
TlsAlloc
WriteFile
SetStdHandle
GetConsoleCP
InterlockedExchange
TerminateThread
CloseHandle
TlsGetValue
HeapReAlloc
GetModuleFileNameA
LeaveCriticalSection
GetConsoleMode
GetSystemTimeAdjustment
ReadFile
GetVersionExA
GetCurrentProcess
UnhandledExceptionFilter
OpenWaitableTimerW
TlsFree
InterlockedIncrement
CreateMutexA
LCMapStringW
GetEnvironmentStrings
SetHandleCount
GetSystemDefaultLCID
EnumResourceLanguagesA
GetUserDefaultLCID
GetProcessHeap
InterlockedDecrement
SetUnhandledExceptionFilter
EnumSystemLocalesA
WriteConsoleA
GetLastError
LoadLibraryA
GetACP
GetStringTypeA
VirtualAlloc
WideCharToMultiByte
FlushFileBuffers
OutputDebugStringW
CreateFileA
GetTimeZoneInformation
GetModuleHandleW
FreeEnvironmentStringsW
GetCurrentThreadId
SetConsoleCtrlHandler
IsDebuggerPresent
GetModuleHandleA
GetOEMCP
Sleep
GetConsoleOutputCP
TlsSetValue
HeapFree
GetSystemTimeAsFileTime
FreeEnvironmentStringsA
GetStringTypeW
GetLocaleInfoA
GetEnvironmentStringsW
SetFilePointer
GetDriveTypeW
OpenProcess
GetStdHandle
VirtualQuery

wininet

InternetCombineUrlA
HttpQueryInfoA

advapi32

CryptHashSessionKey
CryptGetProvParam
RegRestoreKeyW
RegLoadKeyW
RegReplaceKeyA
RegQueryValueExW
RegQueryValueA
RegFlushKey
CryptVerifySignatureA
RegSetKeySecurity
RegSetValueExW
CryptDuplicateHash
ReportEventW
CryptEnumProvidersA
RegEnumKeyW
CryptSetProviderExA
RevertToSelf
RegOpenKeyW
RegDeleteKeyA
LookupAccountNameA
LookupPrivilegeDisplayNameA

comctl32

InitCommonControlsEx

shell32

SHInvokePrinterCommandA
DragQueryPoint

user32

DlgDirListA
DrawCaption
RealGetWindowClass
ChangeDisplaySettingsW
GetActiveWindow
FreeDDElParam
EndPaint
GetListBoxInfo
WaitMessage
MsgWaitForMultipleObjects
RegisterClassExA
TrackMouseEvent
GetMessageA
RegisterClassA
SetMenuItemBitmaps
DlgDirListComboBoxA
SetDoubleClickTime
CallMsgFilterA

Sections

.text
Size: 179KB - Virtual size: 179KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 315KB - Virtual size: 315KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

54e23fa8534b6a40d720eec9715b89c5

Headers

File Characteristics

Imports

kernel32

wininet

advapi32

comctl32

shell32

user32

Sections

.text Size: 179KB - Virtual size: 179KB

.rdata Size: 10KB - Virtual size: 27KB

.data Size: 315KB - Virtual size: 315KB

.rsrc Size: 2KB - Virtual size: 2KB

.text
Size: 179KB - Virtual size: 179KB

.rdata
Size: 10KB - Virtual size: 27KB

.data
Size: 315KB - Virtual size: 315KB

.rsrc
Size: 2KB - Virtual size: 2KB