aff53c4eaa82de62a0706812b0ddbf15_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

aff53c4eaa82de62a0706812b0ddbf15_JaffaCakes118
Size

21KB
MD5

aff53c4eaa82de62a0706812b0ddbf15
SHA1

8e51f555daf7659c3da9ee7afb67503c157f720a
SHA256

10a727930a96106049cc00918e7dad222aaf71f173cd0b8aa04474f9ca9e6d14
SHA512

df255aacf9e1efc7627b3faa28c75a2a12ae8069bb886338883caeefdd9f2c63260f7fe84516bcb0d401bb8d912584341957657bf6c01f7e0a25b1afaa436038
SSDEEP

384:JcGF17FrnX9bODiRn9nxcuk6hk3Z1AqNNVQKOKOvxyA0ZE+3y2:JcilFr1ppk7AOGKLRdy2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aff53c4eaa82de62a0706812b0ddbf15_JaffaCakes118

Files

aff53c4eaa82de62a0706812b0ddbf15_JaffaCakes118
.dll windows:4 windows x86 arch:x86

c308a7e6e2c1b5c85f04246860fbdc9d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

lstrcpynA
GetProcessHeap
GlobalAlloc
CreateEventA
GetFileAttributesA
lstrcatA
MultiByteToWideChar
GetProcAddress
GlobalFree
GetModuleHandleA
CloseHandle
GetTempPathA
lstrcpyA
SetFilePointer
lstrcmpA
RtlUnwind
CreateFileA

user32

DestroyWindow
EndPaint
GetWindowRect
GetFocus
GetClientRect
SendMessageA
RegisterWindowMessageA
SetWindowLongA
MessageBoxA
GetWindowLongA
CreateWindowExA
GetDlgItem
ShowWindow
IsWindow
CreateWindowExW
IsWindowVisible
SetWindowTextA
CloseWindow
EnableWindow
CallWindowProcA
SetDlgItemTextA
wsprintfA

advapi32

RegQueryValueExA
RegCloseKey

wininet

InternetConnectA

Exports

Exports

food
grab
plum

Sections

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ