110f18f3ed28b65b037fa0a3940a4ecc_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

110f18f3ed28b65b037fa0a3940a4ecc_JaffaCakes118
Size

102KB
MD5

110f18f3ed28b65b037fa0a3940a4ecc
SHA1

2bbe0ea3d120854ef30879e37f86a7450877f8f2
SHA256

e51f8827784070ff69f3d0756d4e79f0abcb3fefed59030a622544726236ad4f
SHA512

7cbe8026039bb775a1eb0fb0eca22788fce10fcddc08a05f72d12acc714bc5b57fb551359fe2f8616ce169ee68567e45d8ac3408ccc25577508393c7047f7b95
SSDEEP

1536:vemKHYE2xhb34DyoTvJR7t8fsYC7C5al1LHi9wh9eoI5Zb1dUF3IL2y:G9Hd203RyU/lVHswbexzBSuf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
110f18f3ed28b65b037fa0a3940a4ecc_JaffaCakes118

Files

110f18f3ed28b65b037fa0a3940a4ecc_JaffaCakes118
.dll windows:4 windows x86 arch:x86

164cd25840a514840498625728171b4a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

ShowCursor
SetCursor
OemToCharA
GetMenu
GetFocus
FillRect
EnableWindow
DrawStateA
DrawIcon
DestroyMenu
DeleteMenu
CloseWindow
BeginPaint
wsprintfA

kernel32

GetCommandLineA
GetTimeFormatA
ExitThread
ExitProcess
MapViewOfFile
SetLastError
lstrcmpiA
lstrcpynA
LoadResource

oleaut32

GetErrorInfo
OleTranslateColor
RevokeActiveObject
SafeArrayAllocDescriptor
SafeArrayCreate
SafeArrayDestroy
SysFreeString
VarBstrCat
ClearCustData

Sections

.text
Size: 26KB - Virtual size: 104KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ