38e0cf89360f90dedcd837ba15df3169_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

38e0cf89360f90dedcd837ba15df3169_JaffaCakes118
Size

90KB
MD5

38e0cf89360f90dedcd837ba15df3169
SHA1

dc956b1f92b92761f2e01b64420504557556283d
SHA256

699352fdfe17eef29567d7c284d33e0e7aeb49c1207fb7f1464019dccaae5d82
SHA512

c52507201ada1f8aef52f441c01733446e6691c2c2e14ffd49521ec6d6ce54c0d2dd7f897fa0f3a3904c8cbca06ea90f5e0ccf413d2e6621b1355af28ff5ef9f
SSDEEP

1536:50ZXkaJuXN26JMkAXi2JAtiS2rhO5BcW0mTOhRkt85yBpwb8hOP69h1wV09yqa:58HiM6vAXi2miS2rhOzTOhGt8swgOP6k

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
38e0cf89360f90dedcd837ba15df3169_JaffaCakes118

Files

38e0cf89360f90dedcd837ba15df3169_JaffaCakes118
.dll windows:4 windows x86 arch:x86

8bb8bf1493559ea54cd1fe1675d8b370

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

ToAscii
ShowWindow
ShowScrollBar
ShowCursor
MessageBoxA
LoadImageA
LoadIconA
LoadAcceleratorsA
GetCursor
FillRect
EmptyClipboard
DrawTextA
DestroyWindow
CreateIconFromResourceEx
CreateDesktopW
CreateCursor
CopyImage
CharPrevA

kernel32

FreeResource
GetSystemTimeAsFileTime
GetSystemTime
GetPrivateProfileStringA
FindResourceA
EnumResourceLanguagesW
lstrlenA
lstrcpynA
lstrcpyA
lstrcmpA
lstrcatA
VirtualFree
UnmapViewOfFile
TlsSetValue
TlsFree
SetEndOfFile
MapViewOfFile
LocalAlloc
CloseHandle
EnterCriticalSection
GetTimeFormatA

oleaut32

SysFreeString
SysStringLen
VarBstrCat
SafeArrayCreate
OleTranslateColor

Sections

.text
Size: 17KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 69KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ