2327dfa26a8274073464ac2dcc93b156_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2327dfa26a8274073464ac2dcc93b156_JaffaCakes118
Size

86KB
MD5

2327dfa26a8274073464ac2dcc93b156
SHA1

f248217ded05fcc157d0a6c24c5da514b000c4a1
SHA256

313dcfd92c1549c2e55e2f3e03d79107cf01fddeda0c5cb018408840798068ba
SHA512

6ccc60dfa8bcd046675702f1b9fa9488806618366c67b5f87158a28598d1ebb30d6ce5c4025d13427349bb9d1e81c424fcbd0627735269946d74e5ce0bc6244c
SSDEEP

1536:szWp3hXm+IjFsdfJCtidK1D1GuVNI3SpkpQ5GGdqThk9qWmVye4oR96PNpR24CUs:s+34qPdKP6SpkgshaHzeZ6PzyUiJB37

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2327dfa26a8274073464ac2dcc93b156_JaffaCakes118

Files

2327dfa26a8274073464ac2dcc93b156_JaffaCakes118
.dll windows:4 windows x86 arch:x86

9c5fc5bb9ab0f9b3b4f17d463b03d1af

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

EnableScrollBar
DrawMenuBar
DefDlgProcA
CreatePopupMenu
CreateIconFromResource
CreateDesktopW
CharUpperBuffA
CharToOemBuffA
CharNextA
CharLowerA
BeginPaint

kernel32

FindResourceA
lstrcpynA
lstrcmpiA
UnmapViewOfFile
TlsGetValue
TlsFree
ReadFile
GetSystemTime
GetStartupInfoA
GetPrivateProfileStringA
GetLastError
GetFileSize
EnterCriticalSection
EnumResourceLanguagesW
FlushFileBuffers

Exports

Exports

DNRun
DNSetup
NotifyStartup

Sections

.text
Size: 1024B - Virtual size: 140KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 77KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data0
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 544B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ