72f2d1803ffaa4ad101fbb3a4975a8f0_JaffaCakes118 | Triage

Sharing

General

Target

72f2d1803ffaa4ad101fbb3a4975a8f0_JaffaCakes118
Size

52KB
MD5

72f2d1803ffaa4ad101fbb3a4975a8f0
SHA1

233a27a41df16fe4905a2788afc50dde1ff9e470
SHA256

fec79e322b167089c5e00a5c82a9dbbca9ecb4e88b2fb4920a4492552d64db0a
SHA512

096e42410f5b02057dbe22236bf8c0ebe3e0580db4286774d8eba8cf3cff15cea0423a8d9d26e0305465bdd42d449bc90590fd5bed235a4e01d380756e90e6d8
SSDEEP

1536:/EoyWrbCLv2F3GPIQP45j9d2hT/y2Mnf:s6reLv2GVq9d2hT5s

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
72f2d1803ffaa4ad101fbb3a4975a8f0_JaffaCakes118

Files

72f2d1803ffaa4ad101fbb3a4975a8f0_JaffaCakes118
.dll windows:5 windows x86 arch:x86

e2a26c641dc8f8587fe3c78b90a440f9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

shlwapi

UrlGetLocationW
UrlGetPartW
UrlHashW
UrlCombineW
UrlUnescapeW

user32

MessageBeep
DialogBoxIndirectParamA
DispatchMessageW
TranslateMessage
MessageBoxW
GetDC
SendMessageA

advapi32

RegOpenKeyA

shell32

SHGetDiskFreeSpaceExA

Sections

.text
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 35KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.R
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ