3a0129ee6b17c6f178158c6941399108_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3a0129ee6b17c6f178158c6941399108_JaffaCakes118
Size

100KB
MD5

3a0129ee6b17c6f178158c6941399108
SHA1

c1a304dca8f533ddeb38db6fe659f67f7d3f90ff
SHA256

85dfcc0f34a8b108e3c93eaf3451d5dffa1d94a092348cb738b91b742ee87873
SHA512

02375dd0196fb1b4f8eaf9a8708777939f2d28c4f510ac305a9c032a6f7c9cf41dc5806c4bb27aa8fde169174e81551d8eda92d2286eef1f4a90e18448a1e187
SSDEEP

1536:uCfZHkSFKASWvFIHkvcK2YaCOcf4oxp13EUr8M8FITjAeYEhSDeR+2:LWaKA/vPvcnYaXOTxjOX4FYArR+2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3a0129ee6b17c6f178158c6941399108_JaffaCakes118

Files

3a0129ee6b17c6f178158c6941399108_JaffaCakes118
.dll windows:4 windows x86 arch:x86

24d87a6791c12cac1a776d702f4e76d8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

DuplicateHandle
FileTimeToLocalFileTime
FileTimeToSystemTime
GetCurrentProcessId
GlobalDeleteAtom
GlobalHandle
GlobalLock
HeapAlloc
HeapCreate
IsBadReadPtr
LCMapStringW
LocalAlloc
ReadFile
SetEndOfFile
WideCharToMultiByte
lstrcmpiA
lstrcpyA
lstrcpynA

user32

CharUpperA
DefWindowProcA
DrawIcon
GetClassInfoExA
GetForegroundWindow
GetMenuCheckMarkDimensions
GetMenuState
GetNextDlgTabItem
GetParent
GetScrollPos
GetWindowLongA
GetWindowTextA
GetWindowTextLengthA
GrayStringA
KillTimer
PeekMessageA
SetRect
SetWindowContextHelpId
ShowWindow

Sections

CODE
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 51KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ