a66d92268bf1cab2447014114eb7f498_JaffaCakes118 | Triage

Sharing

General

Target

a66d92268bf1cab2447014114eb7f498_JaffaCakes118
Size

307KB
MD5

a66d92268bf1cab2447014114eb7f498
SHA1

7f1676a122cff9cbb659d5cbdaf8c70531c63d84
SHA256

e957eba7ced7c650830b9735fbcef7a7d6d297cce014b80c0807cf179de4ad37
SHA512

2835de927011843d209b6b09f2983f04d54a582e659467ce695a4ce645e57e8dddc50b2b6b530c88101d07d922d21cf7cf8f9d593d5a920af6a078298455c5b7
SSDEEP

6144:4jO396/QJ5Qa+ygf91SCjHXswHjwfeaE7wPIzocA52lGH4:4S3NJT+yi91nH8wk2XwuoFIlGH4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a66d92268bf1cab2447014114eb7f498_JaffaCakes118

Files

a66d92268bf1cab2447014114eb7f498_JaffaCakes118
.dll windows:4 windows x86 arch:x86

18904c7c7f2f0242ba84a0cb624f1726

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

EndPaint
BeginPaint
DispatchMessageA
TranslateMessage
DialogBoxParamA
GetDesktopWindow

Sections

.text
Size: 234KB - Virtual size: 428KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 21KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

dfd
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ