17f9979a37c8d3bea2b793296f18ae5f_JaffaCakes118 | Triage

Sharing

General

Target

17f9979a37c8d3bea2b793296f18ae5f_JaffaCakes118
Size

80KB
MD5

17f9979a37c8d3bea2b793296f18ae5f
SHA1

bcfc2677db5ad98513b141d789b1a6b04bee08cd
SHA256

7b19a025f6d56ee43e7a2d8c22c869bb6bb116ad39f1dc60e912de7b1377e2e1
SHA512

a5b3dfb7993889c4bbaf3ff7cb78f3f79911fc24a3e1ee2df2b35411357bf1c8e0479d27570e1f0f2efbc2b6ee03fda48a86b368fbd05aa4fadea6dcdf4bfd74
SSDEEP

1536:po5XHB8WFfImDHJ9edLrSAz8SnHcCecuilZ8mNybi:pGyofVDp9eRSAz8qJeriomNy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
17f9979a37c8d3bea2b793296f18ae5f_JaffaCakes118

Files

17f9979a37c8d3bea2b793296f18ae5f_JaffaCakes118
.dll windows:4 windows x86 arch:x86

914ebf9bdb86d87ff760171d24495a55

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CreateFileA
ExitProcess

user32

GetDC
GetDesktopWindow
TranslateMessage

gdi32

Arc

Sections

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 70KB - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE