76a5995aa3796817cdef513f60886053_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

76a5995aa3796817cdef513f60886053_JaffaCakes118
Size

37KB
MD5

76a5995aa3796817cdef513f60886053
SHA1

5d3b34e72c93902ab50c8b0c0796054a2fc39512
SHA256

8c528c4fe4b636d7df60ae4e0b5380ddf074d7cf4e03af8ec3564ff7672a8247
SHA512

d3ee7481bf893859ddcc81abdd7c8dcba6c0edc80dcc23ce793278526b520f0a2fa48bae63ef784803bc542e4cf178d98bf8e0e7151904d4bcbab58b9fbae91d
SSDEEP

384:pu/g3HbaYS5BkIRafOtjwd6TesAEkcRvzA+2p1Fy0LzekOlxmuOTnAulxzjAm6Hr:0I3+deOhpe4kyJgDy6OLO7dtjoRZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
76a5995aa3796817cdef513f60886053_JaffaCakes118

Files

76a5995aa3796817cdef513f60886053_JaffaCakes118
.dll windows:5 windows x86 arch:x86

c20711ed681eeb1a7212f563b3be6ced

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

shlwapi

PathAppendW
PathBuildRootW

user32

MessageBoxW
TranslateMessage
DispatchMessageW
GetDC
SendMessageA
MessageBeep
DialogBoxIndirectParamA

Sections

.text
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 23KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ECODE
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE