38c2a139dd4850ec1a28f85f0132f442_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

38c2a139dd4850ec1a28f85f0132f442_JaffaCakes118
Size

243KB
MD5

38c2a139dd4850ec1a28f85f0132f442
SHA1

93527dbd37bdf9a7a39ac57c845d01ad730c34ed
SHA256

b813a26aa559b38c9fef7b1b076c45a9eef08e14b4b3515ffbdedea629230990
SHA512

9da26e74c7cded9c7d2bf43272ef313f3d9b6287bae75208e16d67854ec6714053be98f7e6d37309aeb513619701eb56c02b8d2e64cb55ace93cf36f478617c2
SSDEEP

3072:qWy+zlC47Y1AjbSxK7Z3ckKbDvq9sYHNG7n6js20/ov3+bQW5Yj9wsC0Qgd5J+kg:TlC48Ay6hXsYtuMXkov0WGsM05kbgDo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
38c2a139dd4850ec1a28f85f0132f442_JaffaCakes118

Files

38c2a139dd4850ec1a28f85f0132f442_JaffaCakes118
.dll windows:4 windows x86 arch:x86

b650d219ea962e51e67223ead1b7fa75

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CreateThread
ExitProcess
ExitThread
FindFirstFileA
GetACP
GetCommandLineA
GetCurrentProcessId
GetCurrentThreadId
GetDateFormatA
GetModuleHandleA
GetStartupInfoA
GetStringTypeW
GetSystemTimeAsFileTime
GetTickCount
GlobalUnlock
InterlockedIncrement
IsBadReadPtr
IsBadStringPtrA
LoadLibraryA
QueryPerformanceCounter
SetErrorMode
SetUnhandledExceptionFilter
VirtualAlloc
VirtualProtect

msvcrt

strstr
strncmp
atoi
strcmp
fwrite
wcschr

user32

ModifyMenuA
GetWindowTextA
DrawIconEx
DrawTextA

comctl32

GetEffectiveClientRect
InitCommonControls
ShowHideMenuCtl
CreateToolbarEx

Exports

Exports

Tsvtdgsky
Yc

Sections

.text
Size: 107KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 75KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 39KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ