31de517a2d84acd76eee1cddf1b1befb_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

31de517a2d84acd76eee1cddf1b1befb_JaffaCakes118
Size

56KB
MD5

31de517a2d84acd76eee1cddf1b1befb
SHA1

730c46073f15ad453a8cd65899896a9e625df3fd
SHA256

27189bbde72737a1cb6b7532d6d3a83a1dbc62992f3c390f33adf52e52e9ad4a
SHA512

23a0a7a950feb9060a7ac9357a81295a5d8f9ef97eacb489414123f7d7959a1da53812ef62aca03fed2efcefc08ea83bb5b89cfbd7bb3b8bb6575385c68b0db6
SSDEEP

1536:ZenJ+emz9ps1r/GBwEX1Oh1zX5BtQ/+07/zb:ZK+emTa/GrX1U1zr6/+Czb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
31de517a2d84acd76eee1cddf1b1befb_JaffaCakes118

Files

31de517a2d84acd76eee1cddf1b1befb_JaffaCakes118
.dll windows:5 windows x86 arch:x86

980811fd30be48c36169cddd81f13a08

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

kernel32

GetModuleHandleA
GetProcAddress

user32

MessageBoxA

version

VerQueryValueA

Sections

.MPRESS1
Size: 50KB - Virtual size: 124KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MPRESS2
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE