89846a91c4cc4ee5bc096b59093d76a3_JaffaCakes118 | Triage

Sharing

General

Target

89846a91c4cc4ee5bc096b59093d76a3_JaffaCakes118
Size

86KB
MD5

89846a91c4cc4ee5bc096b59093d76a3
SHA1

02ba4edaad8e2fe68d0f898451fa640f3b4e4bce
SHA256

f3ef43ae38aa5b5fa0787180435ddf76c3f66dccbed75f1e61f12d1e99b93bd5
SHA512

3161efac2f15d59fb2fae478225025fba8ded4c07cf5b80810b1f88f144c434d3de1d1e90ec26daca08dcc8c0bc76a63736f9a08c6329c32ea56b87228c8e643
SSDEEP

1536:5Ry6xqLJv9TrASprQIJd6ZWrNgfN7neWbDgL0wOhD7paYAFf8yEwqiPpol93Sj:5R/ILfTsuPd+WIguzwYmv5Pi/i

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
89846a91c4cc4ee5bc096b59093d76a3_JaffaCakes118

Files

89846a91c4cc4ee5bc096b59093d76a3_JaffaCakes118
.dll windows:4 windows x86 arch:x86

fd1d027f30982a49180275a98236766e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

DestroyMenu
CreatePopupMenu
CreateMDIWindowA
CreateIconFromResource
CreateAcceleratorTableA
CopyRect
CloseWindow
CharUpperA
CharPrevA

kernel32

GetPrivateProfileStringA
lstrlenA
lstrcpynA
lstrcmpA
lstrcatA
WriteFile
UnmapViewOfFile
TlsFree
SetLastError
SetEndOfFile
EnterCriticalSection
EnumResourceLanguagesA
EnumResourceNamesA
GetFileSize
GetLocalTime
GetModuleHandleA
GetVersion
LeaveCriticalSection
OpenFile
RaiseException
ReadFile
RtlUnwind

Exports

Exports

DNRun
DNSetup
NotifyStartup

Sections

.text
Size: 1024B - Virtual size: 140KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 77KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data0
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 544B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ