100b5f33b7eeb9cdaba2e000dabbe26b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

100b5f33b7eeb9cdaba2e000dabbe26b_JaffaCakes118
Size

40KB
MD5

100b5f33b7eeb9cdaba2e000dabbe26b
SHA1

5af3f93c211d2af71b6a8497c1beeafb72dd39b0
SHA256

f05c66268c9eadc85693b394b4db13d476363fb101189252d2dcebb9d6998fae
SHA512

6a7224dc51fffd05a2b20719e5d4848602bef9b6991ef3f828a7f183468989c4f634b8935491fc999c2421922005e5222aa931a2c85b3b6ae2df1ab0686bc9e0
SSDEEP

768:H4UPZtJkbSYmO36//7M3ciMRErzasx9HJdZ4uSGNJ/PydDIjI:H4UPnJySlO3EQ3ciMcH6udJnEz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
100b5f33b7eeb9cdaba2e000dabbe26b_JaffaCakes118

Files

100b5f33b7eeb9cdaba2e000dabbe26b_JaffaCakes118
.dll windows:5 windows x86 arch:x86

42fb9692a824e417416408cd022b278d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

FindAtomA
GetModuleHandleA
GetProcAddress

user32

GetDesktopWindow

advapi32

RegQueryValueA

Exports

Exports

hgdsdhtde
kcrnvvhw

Sections

.text
Size: 1024B - Virtual size: 721B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 361B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 110B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ