dad5e5d550ff04f8f3c8e53ef18e2444_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dad5e5d550ff04f8f3c8e53ef18e2444_JaffaCakes118
Size

87KB
MD5

dad5e5d550ff04f8f3c8e53ef18e2444
SHA1

27ed4023b814445ae84c5172562e7d6f6ab7645d
SHA256

9fd3781b54cec93e81bec073d5c2b822fd994b4442e3ae344e3577741ac38237
SHA512

0a28f7266a14aec4728f3f749be256ac84bdf8f0599889bf2e01eb14a9ba41037dd4296f289b79a5c15c3feb7f8837a6cb3b4d3580f0b74b10ff624f7b95e713
SSDEEP

1536:qUB01qiIc7TEVLkx3si6I/GPQnTRIgz31ZtD8nlkD9k+q4bUtPvpf99hnGrA//ky:qUB01qhc7TEVYimGPOFrDGkD9rqWUtjN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dad5e5d550ff04f8f3c8e53ef18e2444_JaffaCakes118

Files

dad5e5d550ff04f8f3c8e53ef18e2444_JaffaCakes118
.dll windows:4 windows x86 arch:x86

799d800454393c30e0a9dc1d4a6b4472

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

ShowWindow
ShowCursor
SetMenuInfo
LoadImageA
LoadAcceleratorsW
IsCharLowerA
GetDC
EqualRect
EndPaint
CreatePopupMenu
CreateDesktopA
ActivateKeyboardLayout

kernel32

RtlUnwind
lstrcatA
TlsSetValue
TlsFree
InitializeCriticalSection
GetPrivateProfileStringA
FreeResource
CompareStringA
lstrlenA
lstrcmpiA

oleaut32

OleLoadPicture
OleLoadPicturePath
RevokeActiveObject
SafeArrayAccessData
SafeArrayAllocDescriptor
SafeArrayDestroy
SetErrorInfo
SysFreeString
SysReAllocString
OleIconToCursor

Sections

.text
Size: 20KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 63KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ