779dc139fb7ddaf3598294a9aea2dce3_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

779dc139fb7ddaf3598294a9aea2dce3_JaffaCakes118
Size

13KB
MD5

779dc139fb7ddaf3598294a9aea2dce3
SHA1

b5f09e9a9b24bd956bc3d3cbdfd581b9869cb11f
SHA256

ad3798088c0caff0fc6bd5fb0ff9c2bb6ece5269d21de1ec84e83cce329a489e
SHA512

b17e8e49eddd2a65b6f407941217a582b7aab304acac99ccaf37b59e0865f32740cece56b5469918e63f9e312bf1096fe588ddffe3c95a2841bfd716cdb08708
SSDEEP

192:kr0uQq4tHYEbrtw0udMGl6nLGbwgVGfqvZasY414i3y5riy2DnOdGKJEI3fk:O0uEHvtPxLGUkGfq5314SyFZ2j

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
779dc139fb7ddaf3598294a9aea2dce3_JaffaCakes118

Files

779dc139fb7ddaf3598294a9aea2dce3_JaffaCakes118
.dll windows:4 windows x86 arch:x86

37c68fdde125963dd1ed1c4f664b2890

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

ntdll

LdrInitializeThunk
LdrUnloadDll
NtAccessCheck

msvcrt

__CxxDetectRethrow
__CxxUnregisterExceptionObject
_eof
___setlc_active_func
__doserrno

comdlg32

GetSaveFileNameA
PrintDlgA

gdi32

CreateSolidBrush
EnableEUDC
ExtCreatePen
CreateDIBitmap
CreateFontA

comctl32

MakeDragList
ImageList_AddIcon
ImageList_GetImageInfo
InitializeFlatSB
MenuHelp

Sections

.text
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE