0e7d3f773faeca98ae46b0dae534fc3b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0e7d3f773faeca98ae46b0dae534fc3b_JaffaCakes118
Size

108KB
MD5

0e7d3f773faeca98ae46b0dae534fc3b
SHA1

705ea86b768936d9e0f80585f93a4f6685067400
SHA256

41077c9c5ccfcd3ce2d1e627f0def568af605660c96100b24640930de4144514
SHA512

1d1781ef5c3f22a00b2f2387e4f4bf9eaf12f5054576bef14d667fa0fc9b0952ddf526b6dac30ed6d6a7dc3737a355edf69d6755c82ab91cb9edf40a21243c85
SSDEEP

1536:6IsptGTzcSyMHjn26gAI4AfzfgqyC9THBG9cNX7y1U1Eb3Xy9i+Z3:65pMflbHjndOpzY49bBycOej9i+Z3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0e7d3f773faeca98ae46b0dae534fc3b_JaffaCakes118

Files

0e7d3f773faeca98ae46b0dae534fc3b_JaffaCakes118
.dll windows:4 windows x86 arch:x86

978833452b43205a54cfb9936091648f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GlobalMemoryStatusEx
GetEnvironmentVariableA
WriteConsoleOutputCharacterA
GetCommandLineA
LocalFileTimeToFileTime
GetCurrentProcess
OpenThread
ReplaceFileA
GetPrivateProfileSectionNamesW
GetCurrentThread
VirtualAlloc
GetSystemDirectoryA
ExitProcess
SetComputerNameExA
GetConsoleCharType
GetModuleHandleA
CancelTimerQueueTimer
ResetEvent
PurgeComm
ExitProcess
HeapLock
CopyFileExW
GetVersion

user32

GetKeyboardLayout
BeginDeferWindowPos
InvalidateRgn
CheckMenuRadioItem
GetLastInputInfo
SetThreadDesktop
LockWindowUpdate
EnableScrollBar
SetWindowTextA
GetKeyboardLayout
GetDCEx
GetWindowDC

gdi32

GetRasterizerCaps

Sections

.text
Size: 96KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.textbbs
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 996B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 864B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ