52299ec4e0a0eb1f71562e472fce534c_JaffaCakes118 | Triage

Sharing

General

Target

52299ec4e0a0eb1f71562e472fce534c_JaffaCakes118
Size

164KB
MD5

52299ec4e0a0eb1f71562e472fce534c
SHA1

91ea5537d78fedbe98f38a329edec9a3e6b9f0b1
SHA256

e2f2c6bc63b0da5abc125f9298510e05464c98bd1aa7fd3c1a48494031553571
SHA512

34652cbb0b19fde85c2aed623443f878f0e1b40eef263f9d8703b72aa11ed9d59074a751b489627d41a81e84bdfe498411f1ebcfda132c2cc7ae6cbe861e7625
SSDEEP

3072:1iacUtDDhYFjewjCuaN9gQwI4C0ZxIme6:o/aDDkJmLzgQf+x

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
52299ec4e0a0eb1f71562e472fce534c_JaffaCakes118

Files

52299ec4e0a0eb1f71562e472fce534c_JaffaCakes118
.dll windows:4 windows x86 arch:x86

0c6caef09f90a3d2ff1205eb5723e76f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

EnumResourceLanguagesW
FindResourceA
GetLocalTime
GetStartupInfoA
GetTimeFormatA
LocalAlloc
OpenFile
SetCurrentDirectoryA
SetLastError
VirtualAlloc
lstrlenA

user32

DrawTextA
GetCursor
GetWindowTextA
LoadAcceleratorsA
LoadCursorA
MessageBoxIndirectA
ShowScrollBar
DrawStateA
CreateMenu
CreateIcon
DrawIcon

advapi32

RegQueryValueA
RegLoadKeyA
RegEnumKeyA

Exports

Exports

bkt
lbmiohjrvbt
mllwazcsdy
zwle

Sections

.text
Size: 144KB - Virtual size: 144KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE