04ee720a7dbf61ca2204cd37ee677e3e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

04ee720a7dbf61ca2204cd37ee677e3e_JaffaCakes118
Size

37KB
MD5

04ee720a7dbf61ca2204cd37ee677e3e
SHA1

5cbe76d299cf158a16fa7051a848522560f34e5a
SHA256

1e30330fea564f620ae5f08fd4194d32027783124228a2e8e41ab21ecae80535
SHA512

39992c51b9e05495cf704852f83a2590257062521309e77de4db4e759db976945b84031b4350f0809007e3acb46f1b739125a8624dd791726747850f9b83ad88
SSDEEP

768:eqFuEtq5tmW76Cs5tFrdUWZDM/EYt61ozxEXqV2TEsACoAXSNQ+/RpIp:utdkrTWxAGYqV2TEsAys

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
04ee720a7dbf61ca2204cd37ee677e3e_JaffaCakes118

Files

04ee720a7dbf61ca2204cd37ee677e3e_JaffaCakes118
.dll windows:4 windows x86 arch:x86

0ad42f974403e94daeb17c2e16c80d4c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

EnableScrollBar
DrawStateA
DestroyIcon
CreatePopupMenu
CreateMDIWindowA
CreateIconFromResourceEx
CreateCursor
CopyImage
CloseWindow
CharUpperBuffA
CharToOemBuffA
CharNextA
ChangeMenuA
ActivateKeyboardLayout

kernel32

lstrcmpA
lstrcatA
VirtualFree
TlsGetValue
RtlUnwind
GetSystemTime
GetStartupInfoA
FlushFileBuffers
FindResourceA
ExitThread
ExitProcess
CloseHandle
lstrcpynA

Sections

.text
Size: 18KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 15KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ