f606f9285eda44c7b399b96b1ca5556d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f606f9285eda44c7b399b96b1ca5556d_JaffaCakes118
Size

114KB
MD5

f606f9285eda44c7b399b96b1ca5556d
SHA1

c7dda919909cb1993a95ff623080d399c61a6f47
SHA256

c29459ccbbab7ef9b767cf410d7f8cbe9242daf635ebbeb8afb5c634db611421
SHA512

90228c2f931eb5cbfacb0e6274e90eeff9fa8c2c76c24c8674e5a64702a91ee633a133e912e5052a3f075f84255475f9be6103883fa53f25a18b13c71fea8715
SSDEEP

3072:C/c5ushDu3yObbav1/qsjr44jcvRcGrCL2fl/Pb4:CUhDu3pK1/L4beG2LYM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f606f9285eda44c7b399b96b1ca5556d_JaffaCakes118

Files

f606f9285eda44c7b399b96b1ca5556d_JaffaCakes118
.dll windows:4 windows x86 arch:x86

864cc40dcc794912b6a8db5b145f6bb0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

DispatchMessageA
DialogBoxParamA
DestroyCaret
DeleteMenu
CreateMenu
CreateIconFromResource
CreateDialogParamA
CreateDialogIndirectParamA
CreateDesktopA
CreateCursor
CreateAcceleratorTableA
CopyRect
CharUpperBuffA
CharUpperA
CharToOemBuffA
CharToOemA
CharLowerA
BeginPaint

kernel32

FlushFileBuffers
lstrlenA
lstrcatA
VirtualAlloc
TlsSetValue
TlsGetValue
TlsAlloc
SleepEx
ReadFile
RaiseException
OpenFileMappingA
LoadResource
InitializeCriticalSection
GetVersion
GetTimeFormatA
GetSystemTime
GetStartupInfoA
GetPrivateProfileStringA
GetModuleHandleA
EnumResourceLanguagesW
ExitThread
GetCommandLineA

Sections

.text
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 62KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE