670d16f26f2682ee9f1d449cf9981248_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

670d16f26f2682ee9f1d449cf9981248_JaffaCakes118
Size

89KB
MD5

670d16f26f2682ee9f1d449cf9981248
SHA1

8e77471f70d6d2d1afc35d99d7db24f5ed8bd8fa
SHA256

57e5eb35402b1235a0ab961966f4f30428b2d586c8bc8b2995052f8750df05b9
SHA512

ab69623081ff0464a771ce7429e5f447960829e53103052d5ef12bcf89a82245e65e777ac9c2fc4a935a4e321a7dcf99bc5f1a62eee2c4f9ea0965827ec09ad2
SSDEEP

1536:HP8pC1pW4d70PFj/zm8loxs5+7P1jcIYS6n7YyfKJapZQmvpRrqJmy:kpCim70P1/ixsk1qnDF/Qa3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
670d16f26f2682ee9f1d449cf9981248_JaffaCakes118

Files

670d16f26f2682ee9f1d449cf9981248_JaffaCakes118
.dll windows:5 windows x86 arch:x86

26c2ac6ea7446dc47b7bc56894882c9d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

shlwapi

UrlCreateFromPathA
UrlCombineW

user32

TranslateMessage
SendMessageA
MessageBeep
DialogBoxIndirectParamA
MessageBoxW
GetDC
DispatchMessageW

advapi32

RegCloseKey

Sections

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 76KB - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Y
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ