32a619019b804bc333d607bd95868042_JaffaCakes118 | Triage

Sharing

General

Target

32a619019b804bc333d607bd95868042_JaffaCakes118
Size

50KB
MD5

32a619019b804bc333d607bd95868042
SHA1

79d04ce67f40001046f11ae0e77b2969295ef022
SHA256

db435080941c7d46f13da701b658b383048a80788fe9655dc18f667fecfcb2ac
SHA512

08167eb5b4192e2e1ac477cb0b24253be8ac763bfeee6f927ebfd33049a1011267f64ad05525d97b3cdbbc301dbe7800af59f345067b5c43862df53ff454255e
SSDEEP

768:M72GS/3FvI5mJ/JY8v5y8g7914pTw9TBsMir6O60C7rpz1UPqC8Bcq5b7oSSyi:K2Mg/5g79AU9eM3Jdp181OToSSyi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
32a619019b804bc333d607bd95868042_JaffaCakes118

Files

32a619019b804bc333d607bd95868042_JaffaCakes118
.dll windows:5 windows x86 arch:x86

2abf9b752cac1374ff108c6838aef338

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

shlwapi

StrFormatKBSizeW
PathAddBackslashW
PathBuildRootW

user32

MessageBoxW
DispatchMessageW
TranslateMessage
GetDC
SendMessageA
MessageBeep
DialogBoxIndirectParamA

Sections

.text
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RCODE
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE