ffbd4dcd4576f8a72950aa76fd093ff9_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ffbd4dcd4576f8a72950aa76fd093ff9_JaffaCakes118
Size

244KB
MD5

ffbd4dcd4576f8a72950aa76fd093ff9
SHA1

5c04f20f27fa0d1848474401a8ab48ce455ffdaa
SHA256

c159b6c4444ad740f4667ea4499e6b7323ac924aefef95b7da190027be77b3c4
SHA512

c2bf9ef81141bde79e1812d72bcec610d5672c61835645c6840a554645ae8152964d7cf1945dde2c355619d68a06158eb061e67aeb7697beeb9d63849f81a860
SSDEEP

6144:sB7iXqPHuj1OXcTeokfJ58fe7iIDFMf5A:sRiXqE1OmOHT7vxMB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ffbd4dcd4576f8a72950aa76fd093ff9_JaffaCakes118

Files

ffbd4dcd4576f8a72950aa76fd093ff9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

92831c53f3c93b9e587b7d35b704bf73

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetConsoleScreenBufferSize
GetTimeFormatW
DefineDosDeviceA
OutputDebugStringA
SetNamedPipeHandleState
SetCommTimeouts
InterlockedIncrement
LocalAlloc
SearchPathW
ClearCommError
SystemTimeToTzSpecificLocalTime
VirtualFreeEx
lstrcatW
ReadConsoleA
GetUserDefaultLCID

user32

GetClipCursor
CharNextA
GetDlgItemTextW
EnableMenuItem
EnumWindowStationsA
IsCharAlphaW
MenuItemFromPoint
GetMenuItemInfoA

gdi32

SetPixelV
EnumICMProfilesA
CreateDIBitmap

Sections

.text
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 848B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 172KB - Virtual size: 169KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data0
Size: 60KB - Virtual size: 57KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE