2ee8c9d3a54cfc184038b6723c7a79ab_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2ee8c9d3a54cfc184038b6723c7a79ab_JaffaCakes118
Size

167KB
MD5

2ee8c9d3a54cfc184038b6723c7a79ab
SHA1

6dda631e62df01ce1c1250ab1c74ebe8c09c5841
SHA256

95506a5d3ae060274a65d432e865c7219c35a1c0f3d7f389c026c35e4f962c96
SHA512

c833e74e02c84cf19f0c6955782da7e25041386cb4f7a9e1de077d6a7f7ee288cd08ac21f1289db52a17821892b4eb51fd96094ba0675e91def265d4d51d338f
SSDEEP

3072:NuAr4bSszsPoZF26/K5s90CCf+LMQ22ltWsaWY88Bz1dVJ74vRsiS+:/ERv7o0iC22ltWsaWY88V1dVqsy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2ee8c9d3a54cfc184038b6723c7a79ab_JaffaCakes118

Files

2ee8c9d3a54cfc184038b6723c7a79ab_JaffaCakes118
.dll windows:4 windows x86 arch:x86

a4b5180a8d4396d21111663fc9b3e49e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvbvm60

__vbaFileSeek
__vbaCyStr
__vbaCheckTypeVar

user32

OemToCharW
LoadMenuA
EndPaint
SetFocus
CreateIconFromResource
CreateCursor
CopyImage
CloseWindow
DeleteMenu

kernel32

EnumResourceNamesA
FindResourceA
ExitThread
EnumResourceLanguagesW
lstrcpyA
lstrcmpiA
TlsAlloc
Sleep
SetLastError
ReadFile
RaiseException
MapViewOfFile
GetVersion
CompareStringA
GetSystemTimeAsFileTime

dinput

DirectInputCreateW

Exports

Exports

Bvyu
Lpucedirjcl

Sections

.text
Size: 23KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 50KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 69KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ