1792a656868a4d2689ed3d4b577d7426_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1792a656868a4d2689ed3d4b577d7426_JaffaCakes118
Size

38KB
MD5

1792a656868a4d2689ed3d4b577d7426
SHA1

bb62d812490c8d3154b9f34d72d75b9c0239d820
SHA256

ec60e96dc49a9fc57aabe1a6c6fcd58bab85010916de0b299a95af44ef332dd1
SHA512

b2408f5c9d1752f01189a180912e6d985e929a95c82904028157eeda33e01a7bfb654dd7930faee97af97ec1f5162b4e7b0d7777d11ddeeb39b4c0c520aa62ff
SSDEEP

384:r2dM1LnbVduWnX4qFTrtR1836QFlqIknaqRCz+704JzYp/mca/aPGZA6KG:rLPVduW/FTJ7arFlRko2zYp/caPGKtG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1792a656868a4d2689ed3d4b577d7426_JaffaCakes118

Files

1792a656868a4d2689ed3d4b577d7426_JaffaCakes118
.dll windows:6 windows x86 arch:x86

d219172f5bc63e156bef5e6df234d49a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

imm32

ImmConfigureIMEW
ImmDisableIME
ImmGetCompositionWindow
ImmGetRegisterWordStyleW
ImmInstallIMEA
ImmIsIME
ImmRequestMessageA
ImmUnlockIMCC

shlwapi

SHRegQueryInfoUSKeyA
UrlApplySchemeA

wininet

InternetSetOptionA
InternetSetStatusCallback

rtutils

RouterLogEventA
RouterLogEventDataA
RouterLogEventStringA
TraceDumpExA
TracePrintfExW
TracePrintfW
TraceRegisterExA

msacm32

acmFilterChooseA
acmFilterEnumW
acmFormatDetailsA
acmFormatEnumA

setupapi

SetupDiBuildClassInfoList
SetupDiDeleteDeviceInterfaceRegKey
SetupDiGetClassInstallParamsW
SetupDiSelectOEMDrv

kernel32

GetProcessHeap
GlobalAlloc
GlobalFree
GlobalHandle
GlobalLock
GlobalUnlock
HeapAlloc
LocalAlloc
LocalFree
VirtualProtect

user32

LoadStringW
MessageBoxW

msvcrt

_adjust_fdiv
_initterm
free
malloc
memcpy
memset

Exports

Exports

tgyrlcep

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 424B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ