fcb3640d4163ba5d5125e84f6c73a2fe_JaffaCakes118 | Triage

Sharing

General

Target

fcb3640d4163ba5d5125e84f6c73a2fe_JaffaCakes118
Size

340KB
MD5

fcb3640d4163ba5d5125e84f6c73a2fe
SHA1

033c5ed0aa40890e8ff043e7f49b85ef80c26506
SHA256

2115b8540fb1bb774753660c2b97bb3f949c9439a1386f140b4e6bc30ce3c91c
SHA512

3ad30e9983fb0f84709eaa7381211ab8acc3d23f534c93ab602eff5a6448f65581f6c428917fd99be71eb113ed4341a7886d5a5fb503122c184953e432813bdc
SSDEEP

6144:H6YivNzZszNXhq73RLKGHoa1u7FXcDXcSZCFIZIeAHE9Ojouc6nLDq:iNmJgD8La1wXGXNCFISH4wcgq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fcb3640d4163ba5d5125e84f6c73a2fe_JaffaCakes118

Files

fcb3640d4163ba5d5125e84f6c73a2fe_JaffaCakes118
.exe windows:4 windows x86 arch:x86

4f1dae3de9b41f62c1527f216eca3164

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetConsoleCP
HeapCreate
IsDebuggerPresent
CreateFileMappingA
GlobalUnlock
lstrlenA
GetModuleHandleA
GetLastError
IsBadReadPtr
FindClose
LocalFree
CreateFileA
CloseHandle
GetACP
GetStdHandle
LoadLibraryExA
FreeEnvironmentStringsA
GlobalLock
CreateMailslotA
CreateEventA

user32

CheckMenuItem
DialogBoxParamA
GetIconInfo
GetDlgItemTextA
RedrawWindow
DispatchMessageA
IsMenu
SetFocus
GetListBoxInfo
EndDialog
GetDlgItem
GetMessageA
GetParent
DrawIconEx

apphelp

ApphelpShowDialog
SdbFindFirstTag
SdbCloseDatabase
ApphelpCheckRunApp
SdbFreeFlagInfo

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ