113cfaddf6a788aa0f54707a4566a1f7_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

113cfaddf6a788aa0f54707a4566a1f7_JaffaCakes118
Size

200KB
MD5

113cfaddf6a788aa0f54707a4566a1f7
SHA1

c43878c68cb9914999d41223b8b6ef587cc45a20
SHA256

4db9fffcfa8809a514e57ce83231fdf048afb745981f0ebc8977857f2c884761
SHA512

d142f362f491de14a365efbdd987514f009ecda3ef74873114ad2826c712233ac672d6c668d003897cfb04584d0fb4e2dec1f99a85b632435d88663f6143b0d5
SSDEEP

3072:rmVv6iIpmMoKGWPCCx62Gm60c7ANb+yv+a5rhF:rmIYCCtLma7+5rh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
113cfaddf6a788aa0f54707a4566a1f7_JaffaCakes118

Files

113cfaddf6a788aa0f54707a4566a1f7_JaffaCakes118
.dll windows:4 windows x86 arch:x86

111c3f6b59c86ad36f90430b084670a0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

SetWindowPos
ShowWindow
IsWindowVisible
IsIconic
DestroyWindow
SetMenu
SetParent
GetFocus
GetClientRect
RedrawWindow
IsRectEmpty

ole32

CoInitialize
CoUninitialize
CoTaskMemAlloc
CoCreateGuid
CoCreateInstance
CoTaskMemRealloc

shlwapi

wnsprintfW
StrCmpIW

Exports

Exports

uIyi_PEwi

Sections

.text
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 128B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

adata
Size: 140KB - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 468B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ