55c2715f1b82467368ac923e8b703460_JaffaCakes118 | Triage

Sharing

General

Target

55c2715f1b82467368ac923e8b703460_JaffaCakes118
Size

141KB
MD5

55c2715f1b82467368ac923e8b703460
SHA1

99db9a7d26a1e538802157f6067d3ba34ec337ee
SHA256

f415cd1b44f5f7d93ce1a9b407a5d8980835c5fc735335da6f24b5998981daa0
SHA512

757a43152c9c659a8604e51cd2521ee51efc51067c972933272f960511709b77142059d72b96e0122fe58ad66be070e1d217f6b07c091df67b5cc0656a6a5b4a
SSDEEP

3072:1PG4Uk/w75dfV2qSFoqiwLAbmPgJvA0TcD5wrCQ:kvkU5dfUqSUbFvAkqmC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
55c2715f1b82467368ac923e8b703460_JaffaCakes118

Files

55c2715f1b82467368ac923e8b703460_JaffaCakes118
.dll windows:4 windows x86 arch:x86

8f9779ecc29e9d194b474c6a1ebbd010

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
ExitProcess
GetACP
GetCommandLineA
GetLocalTime
GetModuleHandleA
GetOEMCP
GetStartupInfoA
GetTimeFormatA
RtlUnwind
SetUnhandledExceptionFilter
UnmapViewOfFile
lstrcmpiA

user32

ShowCaret
LoadIconA
LoadBitmapA
DrawStateA
CreateMDIWindowA
CharToOemBuffA
CharToOemA
DrawTextA

advapi32

LsaCreateTrustedDomainEx
LsaGetRemoteUserName

msvbvm60

__vbaCheckTypeVar
__vbaAryUnlock
__vbaFileSeek
__vbaCyAdd
__vbaError
__vbaEnd
__vbaCyMul

dinput

DirectInputCreateA
DirectInputCreateEx

Exports

Exports

Swa
Wacommce

Sections

.text
Size: 13KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 47KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 69KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ