fbc6fa8ea6c72c441eb863bfa87faa8c_JaffaCakes118 | Triage

Sharing

General

Target

fbc6fa8ea6c72c441eb863bfa87faa8c_JaffaCakes118
Size

70KB
MD5

fbc6fa8ea6c72c441eb863bfa87faa8c
SHA1

1f53dc929116648612b7f0713f746768b95f315d
SHA256

df6628a99175be11392001404b340f5b11e998a87cc75fda160f535bc93ec432
SHA512

850e50afb4a0ae267e05d68c7f032483cfacb89aa2bd0baedccfbb0a221d942007b2bd951a9d96e265dc34a92df77f107b05b86bcfc6909ccbb53c02eb76002e
SSDEEP

1536:IhwhIxkCo3UbTAg2KW3EP9IrW1bJixGL8ZAliIfOT:IhEIxjPAiYOIscULEA4V

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fbc6fa8ea6c72c441eb863bfa87faa8c_JaffaCakes118

Files

fbc6fa8ea6c72c441eb863bfa87faa8c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

70945c7ddefd5d13995e0fac88299107

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CopyRect
GetWindowTextLengthA
DrawIcon
DialogBoxParamW
EndDialog
LoadCursorA
DrawTextW
GetWindowTextA
InsertMenuA
CopyImage
CreateIcon
DrawTextA
GetFocus
LoadMenuA
IsWindow
DialogBoxParamA
GetDC
GetDlgItem
CloseWindow
CopyIcon
DrawIconEx
IsMenu

kernel32

lstrcatA
GetStartupInfoA
GetCPInfo
SetFilePointer
GetCommandLineA
GetStdHandle
CreateFileA
GetVersion
lstrcpyA
GetACP
lstrcpynA
LCMapStringW
GetFileType
GetModuleFileNameA
LCMapStringA
GetStringTypeA
WriteFile
SetHandleCount
lstrcpynW
GetCurrentProcess
GetStringTypeW

comctl32

DrawStatusTextW
CreateMappedBitmap
ImageList_DrawEx
CreateToolbar
CreateUpDownControl
ImageList_Draw
CreateToolbarEx
ImageList_EndDrag
ImageList_Add
ImageList_Destroy

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 49KB - Virtual size: 18.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 15KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ