3df6acffcbed6738608d172442e753d0_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3df6acffcbed6738608d172442e753d0_JaffaCakes118
Size

38KB
MD5

3df6acffcbed6738608d172442e753d0
SHA1

d74baa86b119bc918ed8d763bfa0330193ce22e7
SHA256

61eee1051aa45535fc550fcf05d310e054c38ff985f5018d5197d1ad61cd1fbd
SHA512

87b60fb9e45e79872e6ad3b43299a539bad729149f826a768e018bd058f9a231ac83c728c381f8f9d4358c3e2244f7c390459d5b9441d132b1cfd359896b7a8e
SSDEEP

768:/TshUUX6mKWwlSvwvMX8u71+BKDjVJzOJZfbv480aUV8d0/:/TsyUX6mKp2ilBKlJz0jvGV8dW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3df6acffcbed6738608d172442e753d0_JaffaCakes118

Files

3df6acffcbed6738608d172442e753d0_JaffaCakes118
.dll windows:5 windows x86 arch:x86

2abf9b752cac1374ff108c6838aef338

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

shlwapi

StrFormatKBSizeW
PathAddBackslashW
PathBuildRootW

user32

MessageBoxW
DispatchMessageW
TranslateMessage
GetDC
SendMessageA
MessageBeep
DialogBoxIndirectParamA

Sections

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RCODE
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE