dcc518c99c847ad23a24d1c5ce652203_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dcc518c99c847ad23a24d1c5ce652203_JaffaCakes118
Size

616KB
MD5

dcc518c99c847ad23a24d1c5ce652203
SHA1

8d947d431acd58c274121b21ac7a06ea97f153da
SHA256

de6ff83464c61e918bb2843176200b98bfe112ee2dd50db69e873a19bf2baba0
SHA512

d35090391ec9c3fef8c4558bcfd97c096ac0181a74fab15d52eed44a25d6596b4dbbeb5f0f1189de9ded46447151a795c94d4f3948f91c3ab0f2ae8b89817ea9
SSDEEP

12288:3LLswbOOOvpbqET/e3KeE/pzN0n3zmsCh+Rbh+BS7O65ulJygTh:Fbi3tn+nDCAGBS7OwAsqh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dcc518c99c847ad23a24d1c5ce652203_JaffaCakes118

Files

dcc518c99c847ad23a24d1c5ce652203_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c833f3be73b58ccf8e7df01c5b00d8e9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

user32

EnableScrollBar

gdi32

PatBlt

advapi32

RegQueryValueExA

shell32

SHBrowseForFolderA

ole32

CoTaskMemAlloc

oleaut32

SysAllocStringByteLen

shlwapi

PathFindFileNameA

comctl32

ImageList_Create

msimg32

AlphaBlend

uxtheme

CloseThemeData

wininet

InternetOpenUrlA

iphlpapi

GetAdaptersInfo

Sections

.text
Size: 579KB - Virtual size: 2.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE