fbe5d0710601bd181e692ad4155f8d5f_JaffaCakes118 | Triage

Sharing

General

Target

fbe5d0710601bd181e692ad4155f8d5f_JaffaCakes118
Size

171KB
MD5

fbe5d0710601bd181e692ad4155f8d5f
SHA1

7915bc6a8333588c9a3642d77d97f47ba3921d7f
SHA256

5b3ae2332a7f22049c9a343b2f23f8ad287205c66a71961f5cbfb5725613a330
SHA512

8594285ca2075c54837846eb42f02736afb17de52fbc306265339e53115a173550641123e9a64c8fe3d212a24a82fd2e608848862a346a26d90da0d69a53b807
SSDEEP

3072:hWScF+ap1FkGGG/371UoeVeu+YKJa5Y/njtHiy9X/AV31aIKIr63jsFC:hWb9wGGG/RFWyRpy31am63jsF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fbe5d0710601bd181e692ad4155f8d5f_JaffaCakes118

Files

fbe5d0710601bd181e692ad4155f8d5f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

dc24715b16d1c1cbd97afa138dc641f6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

FileTimeToLocalFileTime
ConvertFiberToThread
IsBadReadPtr
LocalAlloc
GetCurrentProcess
FreeLibrary
SetThreadIdealProcessor
LoadResource
GetStringTypeW
SetCurrentDirectoryW
FindNextFileW
CompareStringA
SetEnvironmentVariableW
SystemTimeToFileTime
GetShortPathNameW
LocalFileTimeToFileTime
EnumResourceNamesW
SetErrorMode
RegisterWaitForSingleObject
LCMapStringW
FindResourceW
GetSystemDirectoryW
FindFirstFileW
GetLocalTime
FindClose
GetOEMCP
LocalFree
FileTimeToSystemTime
SearchPathW

user32

RealGetWindowClassA
IsWindowEnabled
EnableWindow
ValidateRect
FlashWindow
ReleaseCapture
InvalidateRgn
SetCapture
UpdateWindow
DestroyWindow
ValidateRgn
IsWindow
ExcludeUpdateRgn
GetCapture
GetUpdateRgn

Sections

.text
Size: 109KB - Virtual size: 109KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 59KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imul
Size: 512B - Virtual size: 244KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ