f47d31a1e038980b0780e75360650b22_JaffaCakes118 | Triage

Sharing

General

Target

f47d31a1e038980b0780e75360650b22_JaffaCakes118
Size

113KB
MD5

f47d31a1e038980b0780e75360650b22
SHA1

1f157370ec5d5adbd8785237f77a7c95a93c7f64
SHA256

a238c67db20f6e34397229ae793e1507dc26ef91a10fec10d40c462c23d1bedc
SHA512

3f1463136faf8da380cccad836f4aeb96d9079ea14a557986e9938c49cda12e96e4233fe33f719e707f3939c290e999502c7b9adeef2d9774fe675a339ee021f
SSDEEP

3072:T//HX3MGpeU4IOG3fMT8W6b6U9x/6oXMB9lnX8wqB:TMGRT0Th6b686WMFe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f47d31a1e038980b0780e75360650b22_JaffaCakes118

Files

f47d31a1e038980b0780e75360650b22_JaffaCakes118
.dll windows:4 windows x86 arch:x86

2ead5ee9091da0d74756b4706e8d6b64

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

CopyIcon
DestroyIcon
GetDesktopWindow
LoadIconA
PostMessageA
PostQuitMessage
RegisterClassA
ReleaseCapture
ReleaseDC
SendMessageA
SetCursor
SetForegroundWindow
SetMenu
SetMenuItemInfoA
SetPropA
SetScrollPos
SetScrollRange

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

DATA
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

DATA
Size: 18KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.code
Size: 54KB - Virtual size: 144KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE