30edb203b0435b9618e2729cf2181854_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

30edb203b0435b9618e2729cf2181854_JaffaCakes118
Size

348KB
MD5

30edb203b0435b9618e2729cf2181854
SHA1

7ca74e7e5ec66c915bf10130881d10a88cf9a474
SHA256

c25e81984c70a60504962a316707198b36d57d626a0e00509ecd8f648f27ac65
SHA512

01dc72c9c38ba31c476419afbb889c248c7c466ee32a10b97ee75ec95ef5ba823de9fc2eb3d4778586dde5032f8ed614d7320283ab3035cb7aa436c88d7e2bdb
SSDEEP

3072:UYsNyF9iAqYrwIjI1sNRrsspUvzEqe6bFP/TmFj:UJNyFrRwIjtNRrssSvO+PL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
30edb203b0435b9618e2729cf2181854_JaffaCakes118

Files

30edb203b0435b9618e2729cf2181854_JaffaCakes118
.exe windows:4 windows x86 arch:x86

fdbfec85672f73d2a4d49635454936d4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
GetModuleHandleA
LoadLibraryA
ExitProcess

user32

MessageBoxA

Sections

.text
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sdata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.perplex
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

fabttdb
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

fdbfec85672f73d2a4d49635454936d4

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 76KB - Virtual size: 76KB

.data Size: 84KB - Virtual size: 84KB

.rdata Size: 48KB - Virtual size: 48KB

.idata Size: 16KB - Virtual size: 16KB

.edata Size: 8KB - Virtual size: 8KB

.sdata Size: 12KB - Virtual size: 12KB

.pdata Size: 8KB - Virtual size: 8KB

.rsrc Size: 16KB - Virtual size: 16KB

.reloc Size: 20KB - Virtual size: 20KB

.perplex Size: 32KB - Virtual size: 32KB

fabttdb Size: 24KB - Virtual size: 24KB

.text
Size: 76KB - Virtual size: 76KB

.data
Size: 84KB - Virtual size: 84KB

.rdata
Size: 48KB - Virtual size: 48KB

.idata
Size: 16KB - Virtual size: 16KB

.edata
Size: 8KB - Virtual size: 8KB

.sdata
Size: 12KB - Virtual size: 12KB

.pdata
Size: 8KB - Virtual size: 8KB

.rsrc
Size: 16KB - Virtual size: 16KB

.reloc
Size: 20KB - Virtual size: 20KB

.perplex
Size: 32KB - Virtual size: 32KB

fabttdb
Size: 24KB - Virtual size: 24KB