5c2dc41311d7c4fb7bd94bb559bfa4c7_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5c2dc41311d7c4fb7bd94bb559bfa4c7_JaffaCakes118
Size

47KB
MD5

5c2dc41311d7c4fb7bd94bb559bfa4c7
SHA1

89d72ca2b3c0b6d5a6b01ba6fbe4d4017ee1ae1f
SHA256

a814a85613c0015df2d7fa753cd3bc9281630b7a3cbb63d285ec3cb80de0ab06
SHA512

9cdef775999bbeb8cd8f86d569d0a21ed94bbad18eb724b0556d3026636d2e29f5c0c3c104a08cf20f64a931f6642224e013cb9c4261da32bccfad75bec7ac20
SSDEEP

768:/3D5iAiBF5B9o3ZgXwzasItKsE/MkADZOhDK8L4zNTm:AT75Lo3Zg+xnADZQ9ym

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5c2dc41311d7c4fb7bd94bb559bfa4c7_JaffaCakes118

Files

5c2dc41311d7c4fb7bd94bb559bfa4c7_JaffaCakes118
.dll windows:4 windows x86 arch:x86

34b9463ca1988a4ff93cc222823b15ec

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

ShowOwnedPopups
SetMenuInfo
RegisterClassA
OffsetRect
LoadMenuA
LoadImageA
LoadAcceleratorsA
IsCharLowerA
GetMenu
GetDlgItem
EndDeferWindowPos
EnableMenuItem
CreateIconFromResource
CharUpperBuffA
CharToOemBuffA
CharNextA

kernel32

GetTimeFormatA
TlsAlloc
SleepEx
RtlUnwind
ReadFile
OpenFileMappingA
OpenFile
GetSystemTimeAsFileTime
GetStartupInfoA
GetModuleHandleA
lstrcpyA
lstrcmpiA
lstrcmpA
lstrcatA
UnmapViewOfFile
TlsGetValue
ExitProcess
FlushFileBuffers
FreeResource
GetFileSize
TlsFree

ole32

CoFreeLibrary
CoGetInstanceFromIStorage
CoGetInterfaceAndReleaseStream
CoGetObject
CoRevertToSelf
OleGetAutoConvert
OleGetIconOfClass
OleLockRunning
CoBuildVersion

Sections

.text
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 21KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 16KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ