4a7120d3b95e92210b477fb2bbb63325_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4a7120d3b95e92210b477fb2bbb63325_JaffaCakes118
Size

213KB
MD5

4a7120d3b95e92210b477fb2bbb63325
SHA1

373687a9d167300378f01d2137607aa9b78bd0e1
SHA256

e61e8e429527a64a49e607c73071f368ffc5b1cc1f861a41102968b9ffd2137c
SHA512

64c32d57e9b80a184add823521601325ae35f9ff67958d1a31d51b81d5af6c20bfb39e47f69c027f54e1fb2bee0d44717cd86f6c3d6db8f64a97e4675f25644e
SSDEEP

3072:Zk3KFKBwt2E87I3VkAZAVkzmRrf0ft2HEupOtM2g0rgGqOa/CDSvX9Oy78+wD3oS:ZNFKOX3yRkQMN+Z2WqS1/5w8JcbRasP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4a7120d3b95e92210b477fb2bbb63325_JaffaCakes118

Files

4a7120d3b95e92210b477fb2bbb63325_JaffaCakes118
.dll windows:4 windows x86 arch:x86

30104cc20c7bdc7787d711b5c3b56e98

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

ExitProcess

user32

MessageBoxA

advapi32

RegOpenKeyExA

comctl32

InitCommonControls

wininet

InternetCloseHandle

Exports

Exports

Activate
GetState
open_buy
open_sell

Sections

Size: - Virtual size: 168KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 540B - Virtual size: 540B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 64KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE