308871a041ba4bba9b19c94c29a273c0_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

308871a041ba4bba9b19c94c29a273c0_JaffaCakes118
Size

172KB
MD5

308871a041ba4bba9b19c94c29a273c0
SHA1

4860b6605d4c5b50d885980fdb74400d01661728
SHA256

71b968824d8e3fb25bee33988ad0266d892e1f834cc3767964c91c48f599f55d
SHA512

f3725d75833735e7f1952f02482fe84b33b9935a19c4f925c7217162651372483d220a3fdfeb1c5e380b448d0ac75a5a9569cb11d27035c545dfa568aa18b5b9
SSDEEP

3072:jOJWV45eij3Z4AN+6eZBUBmNphC7kDFCC9U:jO8VzijNn9BmLs7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
308871a041ba4bba9b19c94c29a273c0_JaffaCakes118

Files

308871a041ba4bba9b19c94c29a273c0_JaffaCakes118
.dll windows:4 windows x86 arch:x86

5e309cce430d9ffd87e589b2f3c73fd8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

G:\srue54dbvfsch\4356eesfag\zdgfrwehkl.PDB

Imports

kernel32

GetConsoleMode
GetConsoleScreenBufferInfo
LocalAlloc
FreeConsole
LocalFree

user32

GetClassLongW
CharPrevExA
SetClipboardData
GetDialogBaseUnits
SwapMouseButton
CheckMenuItem
GetCapture
PtInRect
GetQueueStatus
GrayStringA
ChangeDisplaySettingsW
InvertRect
ClientToScreen
DialogBoxParamA
wvsprintfW
SetDoubleClickTime
RemoveMenu
ArrangeIconicWindows
FrameRect
CreateIcon
ExitWindowsEx

msvcrt

__dllonexit
_adjust_fdiv
malloc
_initterm
free
strerror
realloc
fwscanf
sin
isalpha
div
getwc
islower
iswlower
fputs
mblen
swprintf
strcat
_onexit
fgetc
abort
ctime

Exports

Exports

AIQkArLanPffhWQiXgZL
dIzeynwyKrovIvcb
wEQEoyiPb

Sections

.text
Size: 36KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 116KB - Virtual size: 216KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ