43a8422fee1fba59b01fb23054812c51_JaffaCakes118 | Triage

Sharing

General

Target

43a8422fee1fba59b01fb23054812c51_JaffaCakes118
Size

266KB
MD5

43a8422fee1fba59b01fb23054812c51
SHA1

13bcbd7fa9079126b8d654a0874455660bea040b
SHA256

e7343de714cb2c9c64f0cc1a0c0f3daa4f081a464ede3ccea667e05bdf131871
SHA512

20489ca0983768856bebb30316e26ada729e7b8b84c20092f444e2be389c7d7f2e11ac0670b164185cef6ccfc705030f136c5f21f61d7d9fcc6f7f348d54b1c2
SSDEEP

3072:4tbNESFSFueU/KXPRTfzcrD+bvuRj8tZnnR/0TOlqK1JUnKdqzj00iz6VBsJIwMP:+0oeUi1Qrii6D4K0zjHk6VBIIw0iHY7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
43a8422fee1fba59b01fb23054812c51_JaffaCakes118

Files

43a8422fee1fba59b01fb23054812c51_JaffaCakes118
.dll windows:4 windows x86 arch:x86

987eaf0669a7e1b5d4bc2e6cdaff8700

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

ShowCaret
SetFocus
OemToCharA
LoadAcceleratorsW
GetFocus
GetDlgItem
DrawCaption
CreateDesktopA
CreateCursor
CharUpperBuffA

kernel32

InitializeCriticalSection
TlsSetValue
TlsGetValue
Sleep
RtlUnwind
ReadFile
lstrlenA
lstrcpyA
lstrcmpiA
WriteFile
CompareStringA
EnumResourceLanguagesW
FreeResource
GetDateFormatA
GetFileSize
GetLocalTime
GetModuleHandleA
GetSystemTime
GetTimeFormatA
RaiseException
LoadResource
LocalAlloc
VirtualAlloc

oleaut32

OleTranslateColor
SafeArrayAccessData
SafeArrayDestroy
VarBstrCat
OleIconToCursor

Sections

.text
Size: 17KB - Virtual size: 404KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 243KB - Virtual size: 244KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ