38a905c42ed1933b22f496737f8dbe31_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

38a905c42ed1933b22f496737f8dbe31_JaffaCakes118
Size

90KB
MD5

38a905c42ed1933b22f496737f8dbe31
SHA1

4f0e380e038af55465a11dadbc93530a2375ad75
SHA256

e4cfe248faf2e15c286ec2405f2468ae695e797c9bde3d95fe576f877f26c587
SHA512

7832275ec8b30bc275b2b3bfbaab2413a99e255a0bc4993362fabb7982ae1d768af552f61a2bf0f6edfe70a9154dc48ceed7b9cb91962fbc8cd2a4702bd60b35
SSDEEP

1536:80/ZftyLpEZWkZ97n1JRk4Fzz3KbqkEQhjKbb0cI9qdpLbSENJjRWYieYCgiNe:84ftyLpEZvpRkgzz3Kbq9Qa4UHbSENJ+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
38a905c42ed1933b22f496737f8dbe31_JaffaCakes118

Files

38a905c42ed1933b22f496737f8dbe31_JaffaCakes118
.dll windows:4 windows x86 arch:x86

60b079955749047766d680622126e315

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

ShowCaret
SetFocus
OemToCharW
MessageBoxIndirectA
EndDialog
DrawCaption
DestroyWindow
DeleteMenu
DefDlgProcA
CreateIconFromResource
CreateDialogParamA
CreateDialogIndirectParamA
CreateAcceleratorTableA
CopyRect
CharLowerA

kernel32

EnumResourceTypesA
GetModuleHandleA
EnumResourceNamesA
EnumResourceLanguagesW
CloseHandle
TlsAlloc
WriteFile
lstrcatA
lstrcmpiA
lstrcpynA
lstrcpyA
GetVersionExA

oleaut32

SafeArrayAccessData
SafeArrayAllocData
SafeArrayAllocDescriptor
SafeArrayCreate
SetErrorInfo
SysReAllocString
VarBstrCmp
RegisterTypeLib

Sections

.text
Size: 17KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 69KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ