290d65cb70c9da3b58d3631bb7f4361c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

290d65cb70c9da3b58d3631bb7f4361c_JaffaCakes118
Size

230KB
MD5

290d65cb70c9da3b58d3631bb7f4361c
SHA1

f8da07145ee4933b63b1cf723cc499d38e9384d3
SHA256

141d4b509d532c0e004c56c270f2ee204817000827fab1e5107f079d7e763186
SHA512

e8621575a23b575d424558ded2285526069c0492e54488c66f87749d9be067426d3390bc281d3c46cc9a597576c0764fe9dbfc9f7aea6ee3107c54a1a898ec07
SSDEEP

3072:PTQ3dMUhEGlpMsS+UolQ04nFueVL9M9uzyePstmwkCLS77Wpnln8C644Y:rQLEiM3wQ0s5W9uzye7wfLFLs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
290d65cb70c9da3b58d3631bb7f4361c_JaffaCakes118

Files

290d65cb70c9da3b58d3631bb7f4361c_JaffaCakes118
.dll windows:4 windows x86 arch:x86

fb8e81d4790fe4d1cafafd8028fb9baf

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
ExitProcess
GetACP
GetCommandLineA
GetCurrentDirectoryA
GetCurrentProcess
GetFileAttributesA
GetModuleHandleA
GetOEMCP
GetPriorityClass
GetStartupInfoA
GetVersion
HeapAlloc
HeapCreate
HeapReAlloc
MapViewOfFile
MultiByteToWideChar
QueryPerformanceCounter
RtlUnwind
SetHandleCount
SetLastError
SetPriorityClass
SetUnhandledExceptionFilter
lstrcatA

user32

RedrawWindow
ModifyMenuA
GetWindowRect
DestroyIcon

ole32

CoCreateInstance
CoBuildVersion
StringFromGUID2

oleaut32

VarBstrCat
SafeArrayCreate
SafeArrayAllocDescriptor
SafeArrayAccessData
RegisterTypeLi
GetErrorInfo

Exports

Exports

EnumRelCamSettingNext
GetCDInfo
MemcpyFromArray

Sections

.text
Size: 137KB - Virtual size: 180KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 89KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ