3efa05c736fcd3194aaf01cfabff3104_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3efa05c736fcd3194aaf01cfabff3104_JaffaCakes118
Size

51KB
MD5

3efa05c736fcd3194aaf01cfabff3104
SHA1

e2965b31ed16642ec90f82087d69415dd67f3bfc
SHA256

502ad3ce608517801d8a304b2dbdd10e19b3775ce38fa8e203a291273c50a4e8
SHA512

fd17a20f4ccecc036f0bd890c23091b9a640fad40b6741235149ab09c156db8c4e0173556963ae4d9f6b082fefc3c3bf17a0b51efd0ced4e59a0e7d1ab52f620
SSDEEP

768:eIi8dsMqNq2PSFnjAYUnh7Z2W+Ta5dQtwa/zs9HXXgJVgiwCx88hplbLIHOqO:AC8zSqX9ZHca5dQSo49eVgiwp8hplnd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3efa05c736fcd3194aaf01cfabff3104_JaffaCakes118

Files

3efa05c736fcd3194aaf01cfabff3104_JaffaCakes118
.dll windows:5 windows x86 arch:x86

1f61fe8e8af19bce962645bf30fe7fac

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

shlwapi

UrlCreateFromPathA
UrlCombineW
UrlGetLocationW

user32

TranslateMessage
SendMessageA
MessageBeep
DialogBoxIndirectParamA
MessageBoxW
GetDC
DispatchMessageW

advapi32

RegCloseKey

Sections

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 37KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Y
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ