43fe34f1ea04c64d9d6dbdf5704ef151_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

43fe34f1ea04c64d9d6dbdf5704ef151_JaffaCakes118
Size

51KB
MD5

43fe34f1ea04c64d9d6dbdf5704ef151
SHA1

f7928128b47f8f3a7a773f9fead820cfb698c1d1
SHA256

13ef9b6d7dbf581d2041154a1a5b38543ce82d47bd3b96728605d8a4fcf6774b
SHA512

80166eca5583a7c1a0ac81b7ef3bf8020d33d1fdf779d91743cb4b027b2b00c6c33125df1e0b09b1da8a6959d2a183385b4b14cf7c558ef4a1a2a07f9e61e64c
SSDEEP

768:cCm5B22NL4kbEjrJOmD3l/V+U6DwjW+75L8ijGbQcad8g:cZ5B2YLHwPJKU6Dwv5ZjMa6g

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
43fe34f1ea04c64d9d6dbdf5704ef151_JaffaCakes118

Files

43fe34f1ea04c64d9d6dbdf5704ef151_JaffaCakes118
.dll windows:5 windows x86 arch:x86

1f61fe8e8af19bce962645bf30fe7fac

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

shlwapi

UrlCreateFromPathA
UrlCombineW
UrlGetLocationW

user32

TranslateMessage
SendMessageA
MessageBeep
DialogBoxIndirectParamA
MessageBoxW
GetDC
DispatchMessageW

advapi32

RegCloseKey

Sections

.text
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Y
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ