03585a5b44c4084b4d56cda33129c5f7_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

03585a5b44c4084b4d56cda33129c5f7_JaffaCakes118
Size

56KB
MD5

03585a5b44c4084b4d56cda33129c5f7
SHA1

b278285388d90a43aa065632513719c71bf5185f
SHA256

d2a1925b267f306dd83f68f899520ddceb26ecad77867f6bc131ffdda715ffad
SHA512

fd69fa3e36baa2c47b90d4c56ead8af21d18c8108f6c0d8fa00e4fb1a09d5f1d2e1364dc9a7fa32a45f9ad28cd51a5fb3b9a5233645f6561ae22ce371f1e3c69
SSDEEP

768:nalwIRqnmpjsmHHqlJfQwDvlwvA0ttaXIAov5DVyJBXoeZ09Xm8kCs/rEUbo7cqW:8wIRqnmjsNCh+TEJ4XoeZ2cz/QNwAl4x

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
03585a5b44c4084b4d56cda33129c5f7_JaffaCakes118

Files

03585a5b44c4084b4d56cda33129c5f7_JaffaCakes118
.dll windows:4 windows x86 arch:x86

1b33269bd7a472d0b1f14b3fa0f3c838

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

DispatchMessageA
DefDlgProcA
CreatePopupMenu
CreateDialogParamA
CreateDesktopW
CreateDesktopA
CreateCursor
CopyImage
CharUpperBuffA
CharUpperA
CharToOemA
ChangeMenuA

kernel32

GetDateFormatA
lstrlenA
lstrcpynA
lstrcpyA
lstrcmpA
lstrcatA
ReadFile
RaiseException
OpenFileMappingA
OpenFile
LocalAlloc
LoadResource
GetSystemTime
EnterCriticalSection
EnumResourceLanguagesA
EnumResourceLanguagesW
ExitProcess
GetCommandLineA
GetFileSize
GetLastError
GetModuleHandleA
GetPrivateProfileStringA

Sections

.text
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE