57447091469f7fa776a9c0936500fd68_JaffaCakes118 | Triage

Sharing

General

Target

57447091469f7fa776a9c0936500fd68_JaffaCakes118
Size

113KB
MD5

57447091469f7fa776a9c0936500fd68
SHA1

c5ea2aa2200d68e27bd14726ac6e7beabf2f91dc
SHA256

35f9bd500821bc87c7ffc4db83fa170ce98c78c760f2086aef6e1bc9073d17b3
SHA512

f485b25fb33562f42ef31600d4e311fcbc682fc192d2725c198043473a95f6ed61ca9eee314ad1c3aac8cdf2436fc83ee834894661c102f40ddf9d249f020c7b
SSDEEP

1536:TT0cOaL/89xV91c7twoOKeL2CjLLbkovF1yErs85wf5Wd26yn1F1dRg1EX:TT0cOaLaz9C75OhXIoVrHeEdwQS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
57447091469f7fa776a9c0936500fd68_JaffaCakes118

Files

57447091469f7fa776a9c0936500fd68_JaffaCakes118
.dll windows:4 windows x86 arch:x86

3c91d6ad7371ee547bf1423682902c43

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

InterlockedCompareExchange
GetConsoleWindow
SetConsoleOutputCP
GetNamedPipeInfo
GetSystemTimeAsFileTime
DeleteCriticalSection
TerminateProcess
ReadFileEx
SetLocalTime
GetLastError
CreateThread
TlsSetValue
lstrlenA
GlobalFlags
SetConsoleTitleW
GetConsoleTitleW
lstrcpyA

msvcrt

memcpy

Exports

Exports

ClipAccessWAMP
ClipFunction
ClipQuickTimeSamba
ClipRecycleSubdirectory
ClipTaskExport

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.eh_fram
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ