dcfcd0bd3f270d07a1865bf266f94aa9_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dcfcd0bd3f270d07a1865bf266f94aa9_JaffaCakes118
Size

248KB
MD5

dcfcd0bd3f270d07a1865bf266f94aa9
SHA1

a59ab43a98313bd71f750a1c41b68f72964e1310
SHA256

17152efd97b1e64e2da540ad6d682d862db7892cf7b0616eb588416a06ddf3fe
SHA512

3c02ace096bf33a92522f52bfb8b92aeb0f15e406fee2e23cdb5512f8b7ee0780104c89b5a656eaed7ff02a469b608722b5de070bbbf1016b750de00c9f2ac9a
SSDEEP

6144:PJwWr+DbLr2injLV9c57aSll5XT0nJrp0oXN+7TxnK:PJ/+Tr2in/V9a7XKJrp5XA7Tx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dcfcd0bd3f270d07a1865bf266f94aa9_JaffaCakes118

Files

dcfcd0bd3f270d07a1865bf266f94aa9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

50545aa34519cf1a46661fe75354e9cf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
WriteFile
CreateFileA
LockResource
LoadResource
SizeofResource
FindResourceA
FreeLibrary
GetProcAddress
LoadLibraryExA
lstrcmpiA
DeleteFileA
SetFileAttributesA
lstrcatA
GetStartupInfoA
ExitProcess
GetCurrentThread
GetModuleHandleA
lstrcpyA
GetLastError
SetLastError
GetSystemDirectoryA
GetCurrentDirectoryA
GetFileAttributesA
GetDriveTypeA
lstrcpynA
SetThreadPriority
GetUserDefaultLangID
CreateDirectoryA
EnumResourceNamesA
SetCurrentDirectoryA
RemoveDirectoryA
GetCommandLineA
lstrlenA

user32

CharNextA
wsprintfA
MessageBoxA

advapi32

RegFlushKey
RegQueryValueExA
RegCloseKey
RegSetValueExA
RegDeleteValueA
RegCreateKeyExA
RegOpenKeyExA

ole32

CoInitialize
CoUninitialize

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 392B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 232KB - Virtual size: 228KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ