14190a0861ce55080a065f3ad68d77e8_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

14190a0861ce55080a065f3ad68d77e8_JaffaCakes118
Size

163KB
MD5

14190a0861ce55080a065f3ad68d77e8
SHA1

c1f91e990f2e7d95a43d686bd974e9b9aa0674f3
SHA256

bb8bcee5d68e9b31efd1f2fca1069454a4081bb32ce15def7c0906c0bacd3034
SHA512

f60a5fe91db085d11c557f1cebfc9312dbd1ac1fbb6c8d8bca608636367dd08ffbaa2524aff9f4b936b41453eab30620573f45aebc8124ad734a7c5e1cb294dd
SSDEEP

3072:ngJGpBx57N+kikFVw9Nk/7pOUuRAyFl4oZkUDcmrqsvjO9K6UHF:jP57NF9FAkzpOUIFtrPvjO9cH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
14190a0861ce55080a065f3ad68d77e8_JaffaCakes118

Files

14190a0861ce55080a065f3ad68d77e8_JaffaCakes118
.dll windows:4 windows x86 arch:x86

ce441b42122dfbebade98773352dbac3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
ExitProcess
ExitThread
GetACP
GetCommandLineA
GetCommandLineW
GetEnvironmentVariableA
GetModuleHandleA
GetOEMCP
GetProcessHeap
GetStartupInfoA
GetStringTypeA
GetSystemDirectoryA
GlobalAlloc
HeapAlloc
HeapCreate
HeapDestroy
HeapReAlloc
LocalFree
MultiByteToWideChar
RtlUnwind
SetLastError
SetUnhandledExceptionFilter
lstrcatA
lstrcmpiA

user32

FindWindowA
GetWindow
DefWindowProcA
OffsetRect
ReleaseDC
ModifyMenuA
DrawIconEx
wsprintfA

comdlg32

PrintDlgExA

Exports

Exports

D3DBreakVBLock

Sections

.text
Size: 102KB - Virtual size: 216KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 58KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ