414341976ff3d01cd77909becd7a8d68_JaffaCakes118 | Triage

Sharing

General

Target

414341976ff3d01cd77909becd7a8d68_JaffaCakes118
Size

186KB
MD5

414341976ff3d01cd77909becd7a8d68
SHA1

59acd3c43e289197b70bede31ce1cb4130663d9c
SHA256

3e3290858b51bd034a9080a9029eaec9bcdd998aefe71175b42a8e2ab430a06d
SHA512

c516c675da326e3e78b690f8eb9b5290b52f9ff62615f7088329658d4ac8ea6dbb326161195e3fd80f056911b62bbb6bd12a5e4f2247c7b64b7926a3ef2dd78c
SSDEEP

3072:q+FS4KdLUHXPOptswNF8G9yJQbzX8gcE:lFS4KNuGptswFDX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
414341976ff3d01cd77909becd7a8d68_JaffaCakes118

Files

414341976ff3d01cd77909becd7a8d68_JaffaCakes118
.dll windows:4 windows x86 arch:x86

dc3eae38029203ee83d4bcc4e58b359d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
EnumResourceTypesA
ExitProcess
GetCommandLineA
GetFileSize
GetStartupInfoA
InitializeCriticalSection
LoadResource
RaiseException
RtlUnwind
SetLastError
VirtualFree
lstrlenA

user32

GetWindowTextA
LoadCursorA
OemToCharW
GetFocus
DrawIcon
CreateDialogParamA
CreateDesktopA
CharLowerA

advapi32

RegOpenKeyExA
RegLoadKeyA
RegEnumKeyA
RegCloseKey

Exports

Exports

Iezetuxa
Sitg

Sections

.text
Size: 22KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 67KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 25KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ