30e50dbaba4e61a5011b1e9403b51d0e_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

30e50dbaba4e61a5011b1e9403b51d0e_JaffaCakes118
Size

245KB
MD5

30e50dbaba4e61a5011b1e9403b51d0e
SHA1

4dde0d62c33c086b5251a90d253ba185604d2a35
SHA256

06c4a5fb2b793c6770ffaf466f7eed37841d9076842ee1e353b8aac2c471607b
SHA512

a00919f91c4a61bacea821a51f6b4d3c3dde3b146aedea6b252f24e85384e746af7c568f54c89ec2cd0626763b598e3e2c17900c95026e7b7b4c568735e2dfe4
SSDEEP

3072:p/WPa/0SJQAeBMjMi1ClAONMVoTalhkewtZpM60RXQHrSmG3BUHdnJ113qRiq4n:B+a/0QeKN1BoTPXZpjHrSNaHR13

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
30e50dbaba4e61a5011b1e9403b51d0e_JaffaCakes118

Files

30e50dbaba4e61a5011b1e9403b51d0e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

078bb75fedac53e88e02c92b32128660

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

user32

IsWindowVisible
GetTopWindow
GetFocus
GetScrollInfo
GetMenu
IsRectEmpty
GetMenuItemCount
GetKeyboardType
GetDCEx
GetDlgItem
GetMenuItemID
GetScrollPos
GetForegroundWindow
IsIconic
IsDialogMessageA
GetKeyState
IsZoomed
GetWindowThreadProcessId
GetScrollRange
GetPropA
IntersectRect
GetCursor
GetWindowRect
GetWindowLongW
InflateRect
IsDialogMessageW
GetWindowPlacement
GetSystemMenu
IsChild
GetMenuStringA
GetKeyboardState

gdi32

CopyEnhMetaFileA
SelectPalette
CreateBitmap
BitBlt
GetBitmapBits

kernel32

GetVersionExA
SetErrorMode
GetProcAddress
LocalReAlloc
SizeofResource
WideCharToMultiByte
SetLastError
VirtualQuery
HeapDestroy
lstrcmpA
LocalAlloc
MoveFileA
VirtualAllocEx
ExitProcess
WaitForSingleObject
ResetEvent
lstrcpyA
lstrcatA
GetCommandLineW
GetACP
GetModuleHandleA
MulDiv
LoadLibraryA
WriteFile
VirtualAlloc
SetFilePointer
SetEndOfFile
SetThreadLocale
GetLastError
IsBadReadPtr
IsBadHugeReadPtr

Sections

.text
Size: 80KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 150KB - Virtual size: 149KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.RES76
Size: 512B - Virtual size: 204B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RES41
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.RES17
Size: 1024B - Virtual size: 840B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RES74
Size: 1024B - Virtual size: 1004B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RES00
Size: 1024B - Virtual size: 636B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.RES18
Size: 1024B - Virtual size: 517B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RES05
Size: 1024B - Virtual size: 952B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.RES73
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

078bb75fedac53e88e02c92b32128660

Headers

File Characteristics

Imports

user32

gdi32

kernel32

Sections

.text Size: 80KB - Virtual size: 80KB

DATA Size: 150KB - Virtual size: 149KB

.RES76 Size: 512B - Virtual size: 204B

.RES41 Size: 3KB - Virtual size: 3KB

.RES17 Size: 1024B - Virtual size: 840B

.RES74 Size: 1024B - Virtual size: 1004B

.RES00 Size: 1024B - Virtual size: 636B

.RES18 Size: 1024B - Virtual size: 517B

.RES05 Size: 1024B - Virtual size: 952B

.RES73 Size: 1KB - Virtual size: 1KB

.rsrc Size: 2KB - Virtual size: 2KB

.text
Size: 80KB - Virtual size: 80KB

DATA
Size: 150KB - Virtual size: 149KB

.RES76
Size: 512B - Virtual size: 204B

.RES41
Size: 3KB - Virtual size: 3KB

.RES17
Size: 1024B - Virtual size: 840B

.RES74
Size: 1024B - Virtual size: 1004B

.RES00
Size: 1024B - Virtual size: 636B

.RES18
Size: 1024B - Virtual size: 517B

.RES05
Size: 1024B - Virtual size: 952B

.RES73
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 2KB - Virtual size: 2KB