09b39888e452005d7267efec6d985608_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

09b39888e452005d7267efec6d985608_JaffaCakes118
Size

103KB
MD5

09b39888e452005d7267efec6d985608
SHA1

77661e30caeb534f8031a684fe95a7503e963903
SHA256

eedb713f2f5fcd0d940b19d67e17279a6ebf36e5b215ce189ab5c4c7b90fc01b
SHA512

c27a89b0ce77ed53af1dcf32e4f3e8eb3bedd0eae734c47861e14b7ea3ae9a54f62e5693aab9ac3bcc130b3aec732f13fde12f7125839595198bc4838acd0d69
SSDEEP

3072:RKaRhpB8NH0btJ9/IwyE0Pzr0Flj3k87sY:RKaRG0btv/OPzrk3T7Z

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
09b39888e452005d7267efec6d985608_JaffaCakes118

Files

09b39888e452005d7267efec6d985608_JaffaCakes118
.dll windows:4 windows x86 arch:x86

0dc21ff6a9d18e8d1f7c7b21bde0ea1c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

ShowScrollBar
SetFocus
MessageBoxA
MessageBeep
GetWindowTextA
GetMenu
GetCursor
DrawIcon
DestroyWindow
DestroyCursor
CreateMDIWindowA
CreateDialogParamA
CloseWindow
CharLowerA

kernel32

GetVersionExA
LeaveCriticalSection
GetStartupInfoA
ExitProcess
WriteFile
lstrcatA
lstrcmpA
lstrcmpiA
lstrlenA
lstrcpyA
SetEndOfFile

oleaut32

OleTranslateColor
SafeArrayAllocData
SafeArrayCreate
SysReAllocString
VarBstrCat
VarBstrCmp
OleLoadPicture

Sections

.text
Size: 28KB - Virtual size: 104KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ