11537c515714d61e7b17670649e4ba95_JaffaCakes118 | Triage

Sharing

General

Target

11537c515714d61e7b17670649e4ba95_JaffaCakes118
Size

266KB
MD5

11537c515714d61e7b17670649e4ba95
SHA1

64a249a5cfc7da0bbc8a5282eb3fd729643971cc
SHA256

c5552fe5b93ec88714358be05c8dadc2112dfe5ce27a52cfd07ad23243659d2a
SHA512

cb52e317c362dfe92aa2d9f979e76311de0eb4e95390ae6883260b63c66c0325be87acbe47a11d8d776eead4efa899a87dc5dfc8463df6ada7ef2a383ae40ece
SSDEEP

3072:XtbNES+SFueU/KXPRTfzcrD+bvuRj8tZnnR/0TOlqK1JUnKdqzj00iz6VBsJIwMK:1doeUi1Qrii6D4K0zjHk6VBIIw0iHYO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
11537c515714d61e7b17670649e4ba95_JaffaCakes118

Files

11537c515714d61e7b17670649e4ba95_JaffaCakes118
.dll windows:4 windows x86 arch:x86

987eaf0669a7e1b5d4bc2e6cdaff8700

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

ShowCaret
SetFocus
OemToCharA
LoadAcceleratorsW
GetFocus
GetDlgItem
DrawCaption
CreateDesktopA
CreateCursor
CharUpperBuffA

kernel32

InitializeCriticalSection
TlsSetValue
TlsGetValue
Sleep
RtlUnwind
ReadFile
lstrlenA
lstrcpyA
lstrcmpiA
WriteFile
CompareStringA
EnumResourceLanguagesW
FreeResource
GetDateFormatA
GetFileSize
GetLocalTime
GetModuleHandleA
GetSystemTime
GetTimeFormatA
RaiseException
LoadResource
LocalAlloc
VirtualAlloc

oleaut32

OleTranslateColor
SafeArrayAccessData
SafeArrayDestroy
VarBstrCat
OleIconToCursor

Sections

.text
Size: 17KB - Virtual size: 404KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 243KB - Virtual size: 244KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ