f35830853577d32d5bee8b5102924a0b_JaffaCakes118 | Triage

Sharing

General

Target

f35830853577d32d5bee8b5102924a0b_JaffaCakes118
Size

152KB
MD5

f35830853577d32d5bee8b5102924a0b
SHA1

a53df2284e70a8bca14578b4c46926c9e8cdc17d
SHA256

1dd3120b53bd9d30445f6570ef40064c5d510ebd55fe52bb678c7c759d1a362a
SHA512

184896b1c3b3c4cdde85cb98a3e241a5dcf8ae114217aad0abe432220bbffdc2ebe1c8f6a36affaff6ed9b87cb6ec733866c0b5fd5f1dab1222e2558f3624d3e
SSDEEP

3072:WGnGUmz2FTbaCX1Obc8wPqNWuiPNI7y8SdLxE6Au6wLgvN:1nxFvzwbcDP6WpRd1F73

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f35830853577d32d5bee8b5102924a0b_JaffaCakes118

Files

f35830853577d32d5bee8b5102924a0b_JaffaCakes118
.dll windows:4 windows x86 arch:x86

4b6a6390aba6ee4ed030dac5c572762b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

ReleaseSemaphore
SetConsoleWindowInfo
GetLogicalDriveStringsA
GlobalSize
EnumResourceTypesA
FindResourceA
SetFilePointer
SetProcessShutdownParameters
GetUserGeoID
GetModuleFileNameA
GetLocalTime
OpenSemaphoreA
VirtualAllocEx
CallNamedPipeA
GetConsoleCP
SetEvent
GetDiskFreeSpaceA
WriteProfileSectionA
GlobalAddAtomA
SetConsoleKeyShortcuts
RaiseException
FormatMessageA
GetStringTypeA
GetConsoleKeyboardLayoutNameA
GetLocaleInfoA
LZCopy
ResetEvent
GetDriveTypeA

wininet

ResumeSuspendedDownload
InternetCrackUrlA
FtpRemoveDirectoryW
InternetGetConnectedStateExA
InternetQueryDataAvailable
InternetUnlockRequestFile
FtpSetCurrentDirectoryW
FtpSetCurrentDirectoryW

Exports

Exports

IsOyxstibeype
CreateTvuchso
Dshbodem
Spcsrle
CloseXahdpnyp
Pojsnbpku
Vrhgxmcti
Pmcooxwj

Sections

.itext
Size: - Virtual size: 840B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 140KB - Virtual size: 187KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ