f3ce58b8c8355a2c03b2974301a56cc6_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f3ce58b8c8355a2c03b2974301a56cc6_JaffaCakes118
Size

19KB
MD5

f3ce58b8c8355a2c03b2974301a56cc6
SHA1

1723d08112e44bf91dec01827546f11a4eca5a77
SHA256

71b11ebb784d0ac59d7afa7bec8d3a82d16bf6f6d59d1515c682fa0eaa2f90c1
SHA512

161dc020f1aa03ea1e4299e7234d62e3ddd2192ad5e9d8dd0fbea4f15a4fcb237c3a621ece531dc23dc0a21ccbbab07175c7ec40b032458a2bd6f1934dd80262
SSDEEP

384:eUFb+kcClxFcedtzvLS27KB/P4l2BPvm3iVQKOKMnx:pYkcCrFcfHB/PxJlGKMn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f3ce58b8c8355a2c03b2974301a56cc6_JaffaCakes118

Files

f3ce58b8c8355a2c03b2974301a56cc6_JaffaCakes118
.dll windows:4 windows x86 arch:x86

74618c21f237d6649649d48433ed4391

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GlobalAlloc
CreateEventA
GetFileAttributesA
lstrcatA
MultiByteToWideChar
GetProcAddress
SetFileAttributesA
GlobalFree
GetModuleHandleA
CloseHandle
lstrcpyA
lstrcpynA
RtlUnwind
SetFilePointer
lstrcmpA
CreateFileA

user32

DestroyWindow
GetWindowRect
wsprintfA
GetClientRect
SendMessageA
RegisterWindowMessageA
SetWindowLongA
MessageBoxA
GetWindowLongA
CreateWindowExA
GetDlgItem
ShowWindow
CreateWindowExW
IsWindowVisible
SetWindowTextA
EnableWindow
CallWindowProcA
SetDlgItemTextA
GetFocus

advapi32

RegQueryValueExA
RegCloseKey
RegLoadKeyW

wininet

InternetConnectA

Exports

Exports

cool
feed
plem

Sections

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ