177b74b3238844fdcd6a8c33f060e66a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

177b74b3238844fdcd6a8c33f060e66a_JaffaCakes118
Size

1.6MB
MD5

177b74b3238844fdcd6a8c33f060e66a
SHA1

7e5e91ccc284c9f388293346dd8a9c2bb78ac5c5
SHA256

7d10c7aec68d4021e46fd6ad4b0f7944ea7d42b57d24fba6c2c9efba9df8dec2
SHA512

adc8ff853af3a1244fa7eb44cca2de4cfca5053aafee6154dd53c963feb12e2ec2828848ee49ec428f6f7b807b943d860a0b911a156761254ee63e63eab1bea9
SSDEEP

24576:YGF6Ym+Pv+1OYZzze4QsHx5tf8++bxeGbbSjEtTEiteGt/VXvJQzy0t4IuuqgX:LlPv+4YpQy5jtkVtBttfJQzy0t1uC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
177b74b3238844fdcd6a8c33f060e66a_JaffaCakes118

Files

177b74b3238844fdcd6a8c33f060e66a_JaffaCakes118
.dll windows:4 windows x86 arch:x86

aadf5c8667fe05f652d8f2e502e2b9d7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

MessageBoxA

kernel32

GetModuleHandleA
GetProcAddress

Sections

.text
Size: 68KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 76KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ