0fb5cbee75eaf07d1febb8d4c7f39e08_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0fb5cbee75eaf07d1febb8d4c7f39e08_JaffaCakes118
Size

451KB
MD5

0fb5cbee75eaf07d1febb8d4c7f39e08
SHA1

7bafb4af14fd247ab32a3d174a5f02b3ee3f8813
SHA256

982e55c7a50ef87f0e19de063730865325b68eb469e80297c13aa820876f5979
SHA512

5d78736b0e876ae38148ce2e8467abc7fbc357698d5ecb66ba03a7db155897dc02b07c67f03c6c6442617e19d8c732ea9ebea8472cdc01a206233807d50c75f6
SSDEEP

6144:I2DyXKA6P196JHZLLDoqPeGn7tJBMOuwgz0wW07MpezITXcntdxa8Wg2rikW:I2xA6r61doqPFuwJ0WXctXa80ri

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0fb5cbee75eaf07d1febb8d4c7f39e08_JaffaCakes118

Files

0fb5cbee75eaf07d1febb8d4c7f39e08_JaffaCakes118
.exe windows:5 windows x86 arch:x86

34715a29ea7b48a11d738bb6d2fde45d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetFileAttributesW
GetModuleHandleA
IsBadReadPtr
HeapCreate
GetCurrentDirectoryW
MapViewOfFile
GetFileAttributesA
FindVolumeClose
WriteFile
lstrlenA
GetModuleFileNameA
CloseHandle
GetFileType
EnterCriticalSection
LocalSize
WaitForMultipleObjects
GetCommandLineW
GetDriveTypeA
ExitThread
GetCommandLineA
FindVolumeClose
FindClose
HeapFree
GetFileTime
CancelIo

uxtheme

CloseThemeData
GetThemeTextMetrics
DrawThemeBackground
GetWindowTheme
GetThemeEnumValue
GetThemeBool
IsThemeActive
GetThemeTextExtent
CloseThemeData
DrawThemeEdge
SetWindowTheme
GetThemeColor
OpenThemeData

dmocx

DllCanUnloadNow
DllCanUnloadNow
DllCanUnloadNow
DllCanUnloadNow

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 604KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 444KB - Virtual size: 443KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE