2fa425258248531f7aea281a087b2ec3_JaffaCakes118 | Triage

Sharing

General

Target

2fa425258248531f7aea281a087b2ec3_JaffaCakes118
Size

81KB
MD5

2fa425258248531f7aea281a087b2ec3
SHA1

e640a4274a40d5f65462955029bbd038fbecd247
SHA256

63728ac83bd19a58b8a95df794ec146eed122c8f2f6ef6b372727691c5b6ec0e
SHA512

596f3c2d40e6f1e13d2ef94597acc072c366c3352dd827d49c205d7e57780583a4df13b69cddbd4e7d745955c385469120c0c9e894400279f84e882c7781e144
SSDEEP

1536:UR3s9zRwbozkWUc5Sd3OXybFXkZUotwF0tyXZFMzVc+pQ+ItsYOeoe+8igQNgo:4SwMWc5Sd+myUCwF0tyUzVc5+tk+fZGo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2fa425258248531f7aea281a087b2ec3_JaffaCakes118

Files

2fa425258248531f7aea281a087b2ec3_JaffaCakes118
.dll windows:4 windows x86 arch:x86

42fb9692a824e417416408cd022b278d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

FindAtomA
GetModuleHandleA
GetProcAddress

user32

GetDesktopWindow

advapi32

RegQueryValueA

Exports

Exports

pkjgmbc
zyjmquemmni

Sections

.text
Size: 1024B - Virtual size: 544B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 365B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 77KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 112B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ