250ba0441920ff9ac9f27e64f24511ef_JaffaCakes118 | Triage

Sharing

General

Target

250ba0441920ff9ac9f27e64f24511ef_JaffaCakes118
Size

90KB
MD5

250ba0441920ff9ac9f27e64f24511ef
SHA1

063170c36eeae286c5cd3295c297db25d6ed077f
SHA256

a38743d646e3af065d588d488486feaae3254824d9222b5453c6cd3c3ee38f62
SHA512

fe289ef277700f96db061049ba3ed19be9d60e2e8508b7c7827d330482c2672b5b8255ac3bd6e20527bf0e37aceb55248cae550ec509ed9e68346fe4d104a7bf
SSDEEP

1536:C//XACexMLBZG5toNKnS1wkkh0Q4tSpnMTZsJUwkY9WmRfXASZ2SJ:CnACMSGroNKE3C4YAZ6kUNfXAin

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
250ba0441920ff9ac9f27e64f24511ef_JaffaCakes118

Files

250ba0441920ff9ac9f27e64f24511ef_JaffaCakes118
.dll windows:4 windows x86 arch:x86

f64f3b5e5d0b5919f6306bab26c1c863

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

DestroyIcon
CreateMDIWindowA
CreateIconFromResourceEx

kernel32

GetPrivateProfileStringA
lstrlenA
lstrcpynA
lstrcpyA
CloseHandle
EnterCriticalSection
EnumResourceLanguagesW
EnumResourceNamesA
EnumResourceTypesA
ExitProcess
GetDateFormatA
GetFileSize
GetTimeFormatA
LeaveCriticalSection
ReadFile
SetEndOfFile
SetLastError
TlsAlloc
VirtualFree
lstrcmpiA

Sections

.text
Size: 18KB - Virtual size: 104KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 68KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ