be34b71a4a1f00d112735c31bc084ded_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

be34b71a4a1f00d112735c31bc084ded_JaffaCakes118
Size

129KB
MD5

be34b71a4a1f00d112735c31bc084ded
SHA1

dccd3ac468b4b3e5c386860b915f9e837015a092
SHA256

ed5faf180ec899c00dd8f099ed36b5582dc281189ee9a937205312d6ed87114b
SHA512

5bf9e60e8ce776fad2ce4f1b80451796e9f3fbbd8d36087f631989d0936edb027e8f004072a31ddff902ca392e7a318c2fc37ef55f335ac3b9970e8c6c933a36
SSDEEP

3072:JRYxgmG8ISJjmCZGwxcZjCSFVlT7uBLNAJ:JmgqvJjmCZG9GSLB7uBm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
be34b71a4a1f00d112735c31bc084ded_JaffaCakes118

Files

be34b71a4a1f00d112735c31bc084ded_JaffaCakes118
.dll windows:4 windows x86 arch:x86

1ce3facc67b5a97d4bf175aff2c0c4f9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

DrawMenuBar
DrawCaption
DeleteMenu
CreateIcon
CloseWindow
CharUpperBuffA
ActivateKeyboardLayout

kernel32

GetLastError
lstrlenA
lstrcpynA
lstrcpyA
lstrcmpiA
lstrcmpA
TlsGetValue
TlsAlloc
CloseHandle
EnterCriticalSection
EnumResourceLanguagesW
ExitProcess
FreeResource
GetCommandLineA
GetModuleHandleA
GetSystemTime
LoadLibraryA
LoadResource
LocalAlloc
SetLastError

Sections

.text
Size: 34KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 47KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 47KB - Virtual size: 109KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE