3b7b761daac01d5b0b35b874b481fc5e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3b7b761daac01d5b0b35b874b481fc5e_JaffaCakes118
Size

490KB
MD5

3b7b761daac01d5b0b35b874b481fc5e
SHA1

f69672cfe39ab07b11ca8f9f33fddbd15eff99da
SHA256

f6f9afa5f70b812aa77c72c184302d2500280499811dcb0652724f12883ba906
SHA512

e50ebc52c15a7f6e81c20807790c59338bb0f597e54a12d9186b944869213aa5f8a87cb4aeff0f365311df8adf0f520cabacda0777722444d77cb795e3084106
SSDEEP

12288:akcpg1pRc/UjrvGuhr+4DAbmuHYlHEx9b66iSA:akCg1pCyrVDfDU26iSA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3b7b761daac01d5b0b35b874b481fc5e_JaffaCakes118

Files

3b7b761daac01d5b0b35b874b481fc5e_JaffaCakes118
.dll windows:4 windows x86 arch:x86

820ab24e53af2dbafc74d24f87e40262

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

MessageBoxA

comctl32

InitCommonControls

kernel32

LoadLibraryA
GetProcAddress

Exports

Exports

ksjdflefsdflkj

Sections

PELOCKnt
Size: 44KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

PELOCKnt
Size: 3KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

PELOCKnt
Size: 2KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

PELOCKnt
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

PELOCKnt
Size: 412KB - Virtual size: 412KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

PELOCKnt
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

PELOCKnt
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE