dcffc09681ccea41108c5de1e9653b7c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dcffc09681ccea41108c5de1e9653b7c_JaffaCakes118
Size

161KB
MD5

dcffc09681ccea41108c5de1e9653b7c
SHA1

7613679ded73f2e716a1168b618027ee53158b6a
SHA256

fd205d83629c568e0c6dc0db2e889095c71f4cdd1d415e44d5a9b6c89a907a16
SHA512

188542ec5592f165e91201502ee6d378ba77aa6ee66db4c196dc97496f1e93ed1b62893403fbf624caa49a5322521db5e731ec71da24049d3872849a9fe3b791
SSDEEP

3072:0c0MP19xmskWDZcsLstygYW2QRS6BwylTLFFvpW84EqAI8xR:0c0MmskWDZcsLxw1RS6ekl/WvEqAI8x

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dcffc09681ccea41108c5de1e9653b7c_JaffaCakes118

Files

dcffc09681ccea41108c5de1e9653b7c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

07365fdce303deacac283191d5806eab

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DrawTextA
GetMenuItemCount
DrawIconEx
DrawIcon
GetMenu
EmptyClipboard

shell32

DragQueryFileA
Shell_NotifyIconW
SHGetDiskFreeSpaceA
Shell_NotifyIconA

comctl32

ImageList_Add
ImageList_Read
ImageList_Write
ImageList_Destroy
ImageList_Create
ImageList_DragShowNolock
ImageList_GetBkColor

kernel32

GetLocalTime
GetOEMCP
GetModuleFileNameA
ExitProcess
GetLocaleInfoA
LoadLibraryA
GetLastError
VirtualAlloc

Exports

Exports

_I2x0kjH4W@20
_98YaBy
_RXUXZpM499DeV@20
wxYM3q@24
_qEbRTZf@16
_149BqqEQA9YUXJ@12
6iD5P4Ae1g09x@16

Sections

CODE
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 106KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 809B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.itdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ