283916cf1b45e0471de3acae5be07336_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

283916cf1b45e0471de3acae5be07336_JaffaCakes118
Size

66KB
MD5

283916cf1b45e0471de3acae5be07336
SHA1

804f1c22a749b260da3de0f2b71012a8c6037f6d
SHA256

1ecc43e18c00c54d3db22161ca6f6c5d1ca94bcab64a20d0a3b13c5708a1947e
SHA512

661668edb5ff130a4dd80fa9002c9eba7eaf9012808a58655204f71558c91df80957ffcf34a545ee7ea4b1965fd94262374e2be71adcc3a6655f94c3bc4c5d74
SSDEEP

1536:kqTF2IPOSXpYzAal/Rb/MB71cUuWS2fU/:kqh2IPTUTHb07uB2fU/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
283916cf1b45e0471de3acae5be07336_JaffaCakes118

Files

283916cf1b45e0471de3acae5be07336_JaffaCakes118
.dll .ps1 windows:4963 windows x86 arch:x86 polyglot

747e2aed8e2b914b1072c92cee957b1b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

IsDlgButtonChecked
SendMessageA
GetMenu
GetMessageW
IsIconic
DialogBoxParamW
GetSysColor
GetSystemMenu
EndPaint
IsWindow

gdi32

TextOutW
CreateBitmap
CreateCompatibleBitmap
GetTextMetricsW
GetStockObject

kernel32

GetVersionExA
GetCommandLineA
VirtualAlloc
SetFilePointer
VirtualAlloc
SetEvent
LoadLibraryExW
LocalAlloc
ExitProcess

Exports

Exports

DfoLg
HbuNO
DiUCJ
wsYJD
NjClAFrfRW
hABiv

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 49KB - Virtual size: 460KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ