dfbd5bf1e65f0fb496c1f6de60b99b35_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dfbd5bf1e65f0fb496c1f6de60b99b35_JaffaCakes118
Size

178KB
MD5

dfbd5bf1e65f0fb496c1f6de60b99b35
SHA1

f4576b887b73861f7fefaec2568b6f0b8bdec345
SHA256

400d4cb8cac5aae09b90896307595b02c8a72fe7296ac9f0786731113d1e4243
SHA512

f0da7927b6105b4385506da8267c7bbbfae730ddbe3f08c7f47d151cd68bf9955335f069f740c7092057434928140a7a3c03dc8ead53bb34eaeefea5aefde036
SSDEEP

3072:t+zkBDDLGLf3r85Pkzqzqat/fL8KIX+dVrdNl+HyV4yVX0gS:9PGLY5PIQtXTdq844Y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dfbd5bf1e65f0fb496c1f6de60b99b35_JaffaCakes118

Files

dfbd5bf1e65f0fb496c1f6de60b99b35_JaffaCakes118
.dll windows:4 windows x86 arch:x86

fb9b8f75d077dba8bf675bb452958d32

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
ExitProcess
FileTimeToSystemTime
FindClose
FreeLibrary
GetACP
GetCommandLineA
GetCurrentThread
GetModuleHandleA
GetOEMCP
GetStartupInfoA
HeapAlloc
HeapCreate
HeapReAlloc
InterlockedIncrement
MultiByteToWideChar
OpenProcess
RtlUnwind
SetLastError
SetUnhandledExceptionFilter
lstrcmpA

user32

GetSysColor
DeleteMenu
OpenClipboard
GetSysColorBrush
CallWindowProcA

oleaut32

SafeArrayAllocData
OleIconToCursor
SetErrorInfo

Exports

Exports

D3D9UnregisterVertexBuffer
UnregisterFatBinary
WaitForDisc

Sections

.text
Size: 108KB - Virtual size: 204KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 66KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ