4405c43f0aa21f8824a8033c1b600966_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4405c43f0aa21f8824a8033c1b600966_JaffaCakes118
Size

228KB
MD5

4405c43f0aa21f8824a8033c1b600966
SHA1

31d4a4666ce3bff8355b522f3862f1bbf7badef1
SHA256

ac83e38c513cf262cedb589f4f90f8dbf5f16519bab59d80d6605bcf655f6018
SHA512

b14afa3e729467feaf1796787c16601d6a0858e0d17d54ae9be6dc9c10b06d8f4eb80838092942105e4a6bcd25127f2e52e3a8d1e41e0d3b713f1f024d35ab55
SSDEEP

3072:wlH8rbR+InH6HBU83npTz1pjYVg8oswXSgzoG3:wh8PsInahU8plFG6XXSgzo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4405c43f0aa21f8824a8033c1b600966_JaffaCakes118

Files

4405c43f0aa21f8824a8033c1b600966_JaffaCakes118
.dll windows:4 windows x86 arch:x86

689973e859880c0bad4012cce349c636

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

GetGUIThreadInfo
RedrawWindow
SetClipboardData
GetClientRect
GetSubMenu
IsWindow
LoadMenuA
IntersectRect

gdi32

LPtoDP
PtVisible

msvcrt

_wrmdir

Exports

Exports

weewqrq

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 86KB - Virtual size: 407KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 127KB - Virtual size: 127KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ