3fb401419e851475ec1cf89f9b73a125_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3fb401419e851475ec1cf89f9b73a125_JaffaCakes118
Size

81KB
MD5

3fb401419e851475ec1cf89f9b73a125
SHA1

18ab5e11bb852ee834be3a4aa31bc43c722e8070
SHA256

eb746db2e8e2eb192e35f14be8f9862b63ecd2a20dbfe2fe72846762ec12882f
SHA512

86ed99e47f6c7e8674e612abc3338b222326e65a7725fec5cd443453cfa63d4cd6813de840a980164b19f51a54bcbce31666e1b8d767838c4ef99f66cb92a8e6
SSDEEP

1536:SQGmlYTFE+xnKO98ejZEWr+WUQkyDJUIGiMY8DwLXljHq1z1uFh:RGwiE+pKk8eKWyaJHFwwjMmFh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3fb401419e851475ec1cf89f9b73a125_JaffaCakes118

Files

3fb401419e851475ec1cf89f9b73a125_JaffaCakes118
.dll windows:4 windows x86 arch:x86

42fb9692a824e417416408cd022b278d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

FindAtomA
GetModuleHandleA
GetProcAddress

user32

GetDesktopWindow

advapi32

RegQueryValueA

Exports

Exports

hosmviw
vcbsmz

Sections

.text
Size: 1024B - Virtual size: 547B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 360B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 77KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 112B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ