4c83109ca5bc704fba88557a7b24ec9b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4c83109ca5bc704fba88557a7b24ec9b_JaffaCakes118
Size

186KB
MD5

4c83109ca5bc704fba88557a7b24ec9b
SHA1

d18ab8a257d506514548c0198dba2cd25cd099e9
SHA256

22a78f68ee003f3a0e543f4e50bf6cbdf0aad1301f4e5c5c6c5c2ca39d4e4277
SHA512

cd9e295cafc4687ce874184acb0afbf0fc681868561d1786167810696ba2cadafc3b34e438c1d154346bf68d0aeb8489a51877cf7cc0a9d44fd22d8b1c466f68
SSDEEP

3072:q+FS4KdLUHXPOptswNF8G9yJQbzX8gcE6:lFS4KNuGptswFDXo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4c83109ca5bc704fba88557a7b24ec9b_JaffaCakes118

Files

4c83109ca5bc704fba88557a7b24ec9b_JaffaCakes118
.dll windows:4 windows x86 arch:x86

dc3eae38029203ee83d4bcc4e58b359d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
EnumResourceTypesA
ExitProcess
GetCommandLineA
GetFileSize
GetStartupInfoA
InitializeCriticalSection
LoadResource
RaiseException
RtlUnwind
SetLastError
VirtualFree
lstrlenA

user32

GetWindowTextA
LoadCursorA
OemToCharW
GetFocus
DrawIcon
CreateDialogParamA
CreateDesktopA
CharLowerA

advapi32

RegOpenKeyExA
RegLoadKeyA
RegEnumKeyA
RegCloseKey

Exports

Exports

Iezetuxa
Sitg

Sections

.text
Size: 22KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 67KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 25KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ