5e697189f54eade36cc2a7ccac678db4_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5e697189f54eade36cc2a7ccac678db4_JaffaCakes118
Size

95KB
MD5

5e697189f54eade36cc2a7ccac678db4
SHA1

fd6a7122789dec47003ef107477e0de1c15eff8d
SHA256

7899ade7f33b0457da757ecedf1ac2c67dd5fb0f53c53586a0d1acb4826ad464
SHA512

c1cecda7812b9de6b9844cd0f57d52944b02423728042b917e3e8a72303faf396d49a804b99ee63050771e453c153079c270a93f23c8580289348229e8594cd6
SSDEEP

1536:AhatyElNW6JeZII55Al2SvqBc4sddVFLiq4+NZg1He7A2n+sPkQAEzfGeMzKbrqq:kcyuLJeZIIK2CqBcBVDqt/215AEaRzKH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5e697189f54eade36cc2a7ccac678db4_JaffaCakes118

Files

5e697189f54eade36cc2a7ccac678db4_JaffaCakes118
.dll windows:4 windows x86 arch:x86

14f3e836d5b439c39044329a95a27f4e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

ShowWindow
ShowScrollBar
LoadBitmapA
IsCharUpperA
GetDC
GetCursor
FillRect
EndPaint
EnableWindow
DestroyIcon
DestroyCaret
CreateMDIWindowA
CharToOemBuffA
CharNextA
ActivateKeyboardLayout

kernel32

GetLastError
GetStartupInfoA
GetPrivateProfileStringA
GetDateFormatA
GetCommandLineA
CompareStringA
CloseHandle
GetVersion
lstrlenA
lstrcpynA
VirtualAlloc
SleepEx
OpenFile
LeaveCriticalSection
GetSystemTime

oleaut32

SafeArrayAccessData
SafeArrayAllocData
SafeArrayAllocDescriptor
SafeArrayCreate
SafeArrayDestroy
SysReAllocString
OleIconToCursor

Sections

.text
Size: 19KB - Virtual size: 104KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ