31517cb7964aef61c214337aa6687b46_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

31517cb7964aef61c214337aa6687b46_JaffaCakes118
Size

6KB
MD5

31517cb7964aef61c214337aa6687b46
SHA1

9af7743048e3f5c434323eb51cad427fc8af4c1b
SHA256

db2fe32b7cd043fdd0546200545635b00b4c61c227595ae1f2e375fb162cc197
SHA512

faf1923ae85ed44ffbbbbbda471ab515cd93d128977a690564e0e49318bc4b81830f9e8e1ca3bb4d3819e7bcd534de2c39df26e68460772a8c2b7d973d44edaf
SSDEEP

96:KU8PECO57JyYLyYNd+sxHu041mbAEk0ApQox71s0:YP2ttRMsxxGokB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
31517cb7964aef61c214337aa6687b46_JaffaCakes118

Files

31517cb7964aef61c214337aa6687b46_JaffaCakes118
.dll windows:4 windows x86 arch:x86

fdca205784fa53c9e8b7d9d45212968d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

lstrcatA
lstrcmpA

user32

SendMessageA
IsWindow
PostMessageA
GetClassNameA
GetForegroundWindow
GetFocus
ToAsciiEx
GetKeyState
GetKeyboardLayout
GetKeyboardState
CallNextHookEx
ClientToScreen
GetCaretPos
ActivateKeyboardLayout
GetMenuItemInfoA
GetMenuItemCount
GetMenu
UnhookWindowsHookEx
SetWindowsHookExA

Exports

Exports

DLL_GetProjectVersion
EnableDiaryTracking
EnableNTConsoleSupport
EnablePreHandle
GetCapsLockState
SetHook
SwitchLayout
TurnOnPreHandle

Sections

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.shared
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 340B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ