fc2dbedd2e3e16cd9cf21c7c00ccce53_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fc2dbedd2e3e16cd9cf21c7c00ccce53_JaffaCakes118
Size

91KB
MD5

fc2dbedd2e3e16cd9cf21c7c00ccce53
SHA1

253690ea9322700b1633c4649914f0bbc9c5082f
SHA256

91bed29bde38e69a5e3bd864fee6eb48462a833ef63aa9d80e85cbaaa80f0572
SHA512

a0c04cd5590a2dfaf340d18d34fbb374ecb8f8b1a6d676ff5dbf194be77eacdcecdcd4831e2fd0990134422f8d06558dda927decf38ed2b8b9aeb5532f148637
SSDEEP

1536:EDbo+gY5agp3CdbKMF683RMvYkqdWnLqf7yxHITc7eUAjNwMk//z:moA5PxChgv1v2flc7R4wMO7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fc2dbedd2e3e16cd9cf21c7c00ccce53_JaffaCakes118

Files

fc2dbedd2e3e16cd9cf21c7c00ccce53_JaffaCakes118
.dll windows:4 windows x86 arch:x86

35fe8b266b2f4e543a158e82916ebe5f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

ShowOwnedPopups
ShowCaret
SetFocus
RegisterClassA
LoadBitmapA
IsCharUpperA
EndPaint
DrawStateA
DispatchMessageA
DestroyIcon
CreatePopupMenu
CreateDesktopA
CharToOemA
ChangeMenuA

kernel32

OpenFileMappingA
TlsFree
TlsAlloc
Sleep
SetCurrentDirectoryA
GetVersion
GetSystemTime
GetModuleHandleA
GetFileSize
lstrcpynA
lstrcmpiA
lstrcmpA
lstrcatA
VirtualAlloc
ExitThread
FreeResource
UnmapViewOfFile

oleaut32

OleIconToCursor
RevokeActiveObject
SafeArrayAllocData
SafeArrayAllocDescriptor
SafeArrayCreate
SysStringLen
VarBstrCmp
ClearCustData

Sections

.text
Size: 18KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 69KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ