2ffb7c53cd64d63d5bac49dcd461e15b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2ffb7c53cd64d63d5bac49dcd461e15b_JaffaCakes118
Size

92KB
MD5

2ffb7c53cd64d63d5bac49dcd461e15b
SHA1

950f6f2c2a1427a5816ff073ef60c70cc4884bc7
SHA256

700338007c273620619aaada4390b4525e67383d43bf49290ec51de0b592c520
SHA512

f2d3ee31e03c73af85d4c32361163d8e01e6dd6566ca91e36e6b35110989e0441e8deaa27d0323d419fbaded6365c861e6158fed0a1c62ba6f574e9341d95ddb
SSDEEP

1536:3SwXijlVf9mlR9npWVPwb6lRlcc/XB3dlOQGVw161BzUQPltX:iwSwHW6b6xz/DlO5Vw161BzpvX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2ffb7c53cd64d63d5bac49dcd461e15b_JaffaCakes118

Files

2ffb7c53cd64d63d5bac49dcd461e15b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e5ae18a9c8955df1ddbee7fa604e3f05

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

PostThreadMessageA
LoadBitmapW
SetMenu
SetScrollPos
MoveWindow
FindWindowExA
TrackPopupMenuEx
PtInRect
SendDlgItemMessageA
RegisterClipboardFormatA
TranslateMessage
SetRectEmpty
SendNotifyMessageW
ShowWindow
IsWindow
MapWindowPoints
IsWindowVisible
OffsetRect
GetCursorPos
SetActiveWindow
IsCharAlphaW
SetPropA
SetClassLongW
PostMessageW
SetRect
ReuseDDElParam
SetTimer
LoadImageA
SetWindowPos
WaitMessage
SetWindowPlacement
RegisterClipboardFormatW
SetClipboardData
MapVirtualKeyExW
LoadStringW
LockWindowUpdate
TrackPopupMenu
OemToCharBuffA
WindowFromDC
TranslateAcceleratorW
KillTimer

kernel32

RaiseException
FindResourceExW
_hwrite

Sections

.text
Size: 68KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ