fd6d288db9c1472c54f96c17fef315b2_JaffaCakes118 | Triage

Sharing

General

Target

fd6d288db9c1472c54f96c17fef315b2_JaffaCakes118
Size

64KB
MD5

fd6d288db9c1472c54f96c17fef315b2
SHA1

01b17880b6cdacd829bf2b21ebc2d14dcce9273e
SHA256

671ae1408fd9572e79df2cc5ecfba052ca247b28ee4d7bf88a099a535ed638c8
SHA512

bd4fc00f6564d0aa43aae49a0069bed1077cfced734849abdc765d5b64222e835b8364b8021ea0bb9b6dcc82b034baca1a2445021f2baa986f6c794fc0f4a496
SSDEEP

1536:/RvcsiaubJo03Aw1lJEfgqRLXoY2yEWU9yKlp:/RvcsiXDwgmIq9XoRyEf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fd6d288db9c1472c54f96c17fef315b2_JaffaCakes118

Files

fd6d288db9c1472c54f96c17fef315b2_JaffaCakes118
.dll windows:4 windows x86 arch:x86

d86323b9b05570259f669d65202addf1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetDiskFreeSpaceExA
ReadConsoleOutputA
GetLocaleInfoW
LZClose
SetFileAttributesA
PurgeComm
GetVersionExA
FindNextVolumeMountPointA
GetThreadLocale
GetPrivateProfileStringA
GetLocalTime
LCMapStringA
FindFirstFileA
GetProcessTimes
GetSystemDirectoryA
GetFullPathNameA
VirtualAlloc
GetDllDirectoryA
CreateSemaphoreA
GetCommandLineA
WideCharToMultiByte
LZOpenFileA
GetCommandLineA
GetModuleFileNameA
GetVersion

shell32

SHGetSpecialFolderPathA

mpr

WNetGetConnectionA

winmm

timeBeginPeriod
timeGetTime

Exports

Exports

Sjyaojbtgv
GetIvgerxgd
InitGpfottf
Oyacctjbjpr
AddBhlacwrhjn
Qpsmfxutmy
Xrbxlitop
Gchevgwk

Sections

.idata
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 52KB - Virtual size: 186KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ