30ddcf8735dcde94d1d7f9d22168635b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

30ddcf8735dcde94d1d7f9d22168635b_JaffaCakes118
Size

168KB
MD5

30ddcf8735dcde94d1d7f9d22168635b
SHA1

f33ad90c2fe54ea7db171ccde10e50e3f14ed85a
SHA256

0df4b7a43340f6475dcae1048c52c88716a32e3e5d4727b80b40175ff15f97a9
SHA512

4e19bed9ffb0916cfd1224316f3e192778a101ae7ecb5284f1dedde666c599fb3410625bd7e785fad48143b9d9d9eadd9bb46fe654374e9b2ee495f080595307
SSDEEP

1536:t5j5UsqM474KcJ+7kZzeAafk4JfB6VRcg6JLiy2SWjQe6d4KfwWwXezcyK1y:/bqHlsZzz4VqggyXfd4+wWwXeVy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
30ddcf8735dcde94d1d7f9d22168635b_JaffaCakes118

Files

30ddcf8735dcde94d1d7f9d22168635b_JaffaCakes118
.dll windows:4 windows x86 arch:x86

3452a29dfdb421111e8a8e63c1ca375e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
EnterCriticalSection
GetSystemTime
GetSystemTimeAsFileTime
GetTimeFormatA
RtlUnwind
lstrcmpA
lstrcpynA

user32

IsCharUpperA
EqualRect
DestroyCursor

advapi32

RegOpenKeyExA
RegLoadKeyA
RegCloseKey

Exports

Exports

dtugsy
kayacrjp
vpfsih
xjxhukvjm

Sections

.text
Size: 144KB - Virtual size: 144KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE