22c1b894002c6ffd1fdc2a75b48ddcda_JaffaCakes118 | Triage

Sharing

General

Target

22c1b894002c6ffd1fdc2a75b48ddcda_JaffaCakes118
Size

723KB
MD5

22c1b894002c6ffd1fdc2a75b48ddcda
SHA1

5037543f108882d6a0d5b1907d125d40e4126e32
SHA256

c91229d90c423cd5b5bf870cec714e5c956058c62f4b2036607d44f1767c50d2
SHA512

67fe107a5bf13fa041eed46c4477ced5fd1af826cd6fc7e5b0661f3690d1a1eeeb69973ef9ccb50c13bc38740711ad0070daaa4b23ef49c9f28c164a881c4a67
SSDEEP

6144:GuPnPogxyU47hhfJHOtrfIx2yDsOyXMPfMPTPtP/PvPxPLPLPVPbPPxPTPDpP/PY:G4A8h4l1Rmr02GsOynnx9VQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
22c1b894002c6ffd1fdc2a75b48ddcda_JaffaCakes118

Files

22c1b894002c6ffd1fdc2a75b48ddcda_JaffaCakes118
.dll windows:4 windows x86 arch:x86

18e26404a606c740938b3a6583c1881d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

VirtualAllocEx
LoadLibraryA
GetProcAddress
GetModuleHandleW

user32

IsMenu
LoadIconA
IsWindow
VkKeyScanW
GetQueueStatus
IsCharUpperW
GetShellWindow
GetClipboardData
GetInputState
GetClipboardViewer
GetSysColor
GetThreadDesktop
DestroyWindow
IsCharAlphaNumericA
GetMenu

gdi32

PathToRegion
CloseEnhMetaFile
CloseFigure
GetTextCharset
GetGraphicsMode
GetDCBrushColor
EndDoc
CreateSolidBrush
GetEnhMetaFileA
GetTextCharacterExtra
GetDCPenColor
CloseMetaFile
StrokePath
GetStockObject

Sections

.text
Size: 655KB - Virtual size: 655KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data2
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 988B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ