3bfaa1af93ecea4972c455919ce027a8_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3bfaa1af93ecea4972c455919ce027a8_JaffaCakes118
Size

184KB
MD5

3bfaa1af93ecea4972c455919ce027a8
SHA1

e30b46e57cbbc07c010fa857353e0fb9ecac564a
SHA256

76b2dfe857d33c4f449d3711cc04e9491ba2c56bd9bfca8b3c8ee786970385d8
SHA512

f71181c9e49333a0c44eaf357810fa9e37da90c917f68aa797c87b524af3ac45868d3c693006525406ab8d8a40bfae15044f4a3ab1061b2f5a0b83fca9c0d7f5
SSDEEP

3072:2ErW8gEL1DizYjTQzG8kDgFmzDMOzjNTdpYKvAibqzdWPEAKkiSe:c8FDizCTQiZDamzYODpP4ib2Bh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3bfaa1af93ecea4972c455919ce027a8_JaffaCakes118

Files

3bfaa1af93ecea4972c455919ce027a8_JaffaCakes118
.dll windows:4 windows x86 arch:x86

7ff331ac28690a6b9f221cb9a6a95314

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

pncrt

_adjust_fdiv
printf
strstr
strrchr
sprintf
strchr
strncat
??3@YAXPAX@Z
realloc
malloc
calloc
free
_initterm
__dllonexit
_onexit
??2@YAPAXI@Z
_stricmp
_putenv

user32

SystemParametersInfoA
MoveWindow
GetDesktopWindow
GetWindowRect
GetSystemMetrics
SetWindowTextA
SetFocus
DestroyWindow
CharNextA
GetActiveWindow
SendMessageA
PeekMessageA
DispatchMessageA
TranslateMessage
CreateDialogParamA
ShowWindow
IsWindowEnabled
EnableWindow
GetDlgItem
SendDlgItemMessageA
GetParent

kernel32

InterlockedIncrement
DisableThreadLibraryCalls
GetModuleFileNameA
LoadLibraryA
SetErrorMode
FreeLibrary
GetProcAddress
InterlockedDecrement

Exports

Exports

CreateProgressDialog

Sections

.text
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 684B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ