5352c874c0d56c7f82c4828f884df005_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5352c874c0d56c7f82c4828f884df005_JaffaCakes118
Size

196KB
MD5

5352c874c0d56c7f82c4828f884df005
SHA1

dcf163c14d52f814565562c38222a8dc671b6a6a
SHA256

1fbbbbcaadc3fa40af0d915be139fa54c908c534b67baae9430d7947fbdfbd58
SHA512

774e83f8c9a518d4d39a308b9d934d3a3cdd23533e221e8224a7db3ed6ec55d307c2debf532dcffe4aca092b499bcdc1747585025768c2683efe5a76ebb1105e
SSDEEP

3072:SHvF+EqwyS2LYTbxg7/Y9esChvy8fdsfsZjnudTDnQN:7o72LQbxIHvRfdsfZZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5352c874c0d56c7f82c4828f884df005_JaffaCakes118

Files

5352c874c0d56c7f82c4828f884df005_JaffaCakes118
.dll windows:4 windows x86 arch:x86

fe07e412cbf4659c05d4119411349086

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

temprate.pdb

Imports

user32

SetUserObjectSecurity
BroadcastSystemMessageA
DragDetect
CloseDesktop
CharPrevA
GetClassInfoA
AnimateWindow
BeginPaint
GetWindowLongA
SetCapture
IsZoomed
MessageBoxA
RegisterClassA
OpenClipboard
CharLowerA
MessageBeep
SetClipboardData
EnumWindows
ReplyMessage
SetActiveWindow
SetCursor
SetFocus
SetWindowPos
EnableScrollBar
DeferWindowPos
CreatePopupMenu
AttachThreadInput
ChildWindowFromPoint
DrawTextA
CreateMenu

comctl32

ord5
InitializeFlatSB
ord3
PropertySheetA
CreateToolbarEx
ImageList_Copy
ord13

Exports

Exports

FindSystemManager

Sections

.text
Size: 168KB - Virtual size: 166KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.udata
Size: 4KB - Virtual size: 321KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ