cea9f69f76adad5736c7a9886b14d3f5_JaffaCakes118 | Triage

Sharing

General

Target

cea9f69f76adad5736c7a9886b14d3f5_JaffaCakes118
Size

39KB
MD5

cea9f69f76adad5736c7a9886b14d3f5
SHA1

4445f9cbc6e9c70c024af8ec64cc1023cbf14391
SHA256

ad30623a83789255db9eb2e8c7e7ceb2efabe93ce9941cda0533933941d3633e
SHA512

9647de6fd82323632bddfa11cff1fc4051315dd78a842d3aec909e742829ccf0c47d31eb7a350c8040bf0d2bf822cac08c5363c2e02031653abc3b3b57ee622e
SSDEEP

768:/ELb0zj1VNq92keKnRzCkPSEMpbx4/EjToBzqAm3H3lVfXr:J10dfRWkPSnpbx8qAm3VV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cea9f69f76adad5736c7a9886b14d3f5_JaffaCakes118

Files

cea9f69f76adad5736c7a9886b14d3f5_JaffaCakes118
.dll windows:4 windows x86 arch:x86

149f282e73d7899bf2226ca8d488d70e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

ShowOwnedPopups
SetMenuInfo
SetCursor
MessageBoxA
MessageBeep
LoadIconA
FillRect
DrawMenuBar
DrawCaption
CreateDialogIndirectParamA
CopyImage
CharToOemBuffA
CharPrevA
CharNextA
ChangeMenuA
BeginPaint
wsprintfA

kernel32

ExitThread
GetFileSize
GetCommandLineA
FlushFileBuffers
ExitProcess
EnumResourceTypesA
EnumResourceNamesA
EnterCriticalSection
CloseHandle
LocalAlloc
lstrlenA
lstrcpynA
lstrcpyA
VirtualFree
TlsSetValue
SleepEx
LoadResource

oleaut32

OleIconToCursor
RegisterTypeLib
SafeArrayAccessData
SafeArrayCreate
SafeArrayDestroy
SetErrorInfo
SysStringLen
VarBstrCmp
ClearCustData

Sections

.text
Size: 19KB - Virtual size: 120KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 16KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ