2c54bfc709785adb8b621e7a6b47a203_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2c54bfc709785adb8b621e7a6b47a203_JaffaCakes118
Size

83KB
MD5

2c54bfc709785adb8b621e7a6b47a203
SHA1

7527c866e916907b55d12de17851d8254f78094f
SHA256

88fdff4c25503c68ec28193b3f943d06b00b57fb92fd99a46e86d39193ce2454
SHA512

8e6ff44f4760f3af9a0811aca07b026f7b1273a135654e236cefb4043d34521dadeaee0f287f19a1d9024696582beef1b4a958922f5f821b7e1b2716440c2649
SSDEEP

1536:WLdHK0LnruWYGBQbTxGfZNlearo0m5dndhvBaz6CU6l1DA/Y:Wka2bTg7l1m5xn8z6+M

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2c54bfc709785adb8b621e7a6b47a203_JaffaCakes118

Files

2c54bfc709785adb8b621e7a6b47a203_JaffaCakes118
.dll windows:4 windows x86 arch:x86

e01c15b71cd3c330c4b30b274df10b8e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

DrawCaption
DeleteMenu
CreatePopupMenu
CreateIconFromResource
CreateDesktopW
CopyRect
CharUpperBuffA
CharNextA
CharLowerA
BeginPaint
ActivateKeyboardLayout

kernel32

GetCommandLineA
lstrcpynA
lstrcpyA
lstrcmpiA
lstrcmpA
lstrcatA
WriteFile
SleepEx
Sleep
SetCurrentDirectoryA
OpenFile
LocalAlloc
CloseHandle
CompareStringA
ExitProcess
FindResourceA
FlushFileBuffers
GetLastError
GetLocalTime
GetSystemTimeAsFileTime
GetTimeFormatA

Sections

.text
Size: 16KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 63KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ