f229cafa3efc597b95cb429cf0a96ad6_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f229cafa3efc597b95cb429cf0a96ad6_JaffaCakes118
Size

136KB
MD5

f229cafa3efc597b95cb429cf0a96ad6
SHA1

472248922544b12ddcc887ef2415af5422552722
SHA256

51f4fa9ddaf75317da08265a6f20c2ff2bd029cb8da61751a16e190c6a66b050
SHA512

2bbd0b2d9b5ce7b88d3b304ab779d78b88ed0a4a9f5358d14257fd9823e39fecdd7378c2df2fdc4c26de854cbe3b85bf58bcc426767f4c9cd24ecdcd774b0cb0
SSDEEP

768:d6CzWUWyPfXWjwrsRB5+OyboiVgMw5bg68oNU9lWsvqLsDVHFYaxmv8jx7bqEGvy:rvYtUunwcwmkjNq7owMAPX1y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f229cafa3efc597b95cb429cf0a96ad6_JaffaCakes118

Files

f229cafa3efc597b95cb429cf0a96ad6_JaffaCakes118
.dll windows:4 windows x86 arch:x86

0c6caef09f90a3d2ff1205eb5723e76f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

EnumResourceLanguagesW
FindResourceA
GetLocalTime
GetStartupInfoA
GetTimeFormatA
LocalAlloc
OpenFile
SetCurrentDirectoryA
SetLastError
VirtualAlloc
lstrlenA

user32

DrawTextA
GetCursor
GetWindowTextA
LoadAcceleratorsA
LoadCursorA
MessageBoxIndirectA
ShowScrollBar
DrawStateA
CreateMenu
CreateIcon
DrawIcon

advapi32

RegQueryValueA
RegLoadKeyA
RegEnumKeyA

Exports

Exports

bkt
lbmiohjrvbt
mllwazcsdy
zwle

Sections

.text
Size: 116KB - Virtual size: 116KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE