3496f828f1ab7ee6c47bd499d31b7259_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3496f828f1ab7ee6c47bd499d31b7259_JaffaCakes118
Size

131KB
MD5

3496f828f1ab7ee6c47bd499d31b7259
SHA1

26927dbb9c05464c3bf9712d81e75a30f26d2fbb
SHA256

629e033588dcf1eaa0fc9aa3bec3af0bf88c6149caaaa4812f14fee9dcb32e30
SHA512

03ac46f00731a1d968744434286244fb19b2b27a6b4f329c0c819530dce00661f916666072068cacea35db28908f1442c7ab3c37d04296258c74ae596d94b3bf
SSDEEP

3072:sW3MBSflXNGcFsfwi3nNWJzDOQN7sSJImRWM8y0+o:bM0XNGWmRsJ3OQN7sbnj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3496f828f1ab7ee6c47bd499d31b7259_JaffaCakes118

Files

3496f828f1ab7ee6c47bd499d31b7259_JaffaCakes118
.dll windows:4 windows x86 arch:x86

4e045a879e87c8b11a5fd522e6a853fb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

DispatchMessageA
DestroyIcon
DestroyCursor
CreatePopupMenu
CreateMenu
CreateMDIWindowA
CreateIconFromResourceEx
CreateIcon
CreateDesktopA
CreateCursor
CreateAcceleratorTableA
CopyImage
CharUpperBuffA
CharPrevA
CharNextA
DrawStateA
ChangeMenuA

kernel32

lstrcpyA
TlsGetValue
SetLastError
SetCurrentDirectoryA
LoadResource
LoadLibraryA
LeaveCriticalSection
GetLocalTime
GetLastError
FreeResource
FindResourceA
EnumResourceLanguagesW
EnumResourceLanguagesA
CompareStringA
lstrlenA

Sections

.text
Size: 34KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 57KB - Virtual size: 117KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE