aa017b808d4180e17c2782b088a83be0_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

aa017b808d4180e17c2782b088a83be0_JaffaCakes118
Size

474KB
MD5

aa017b808d4180e17c2782b088a83be0
SHA1

3ba51872f9c5f3ccf4ffff11c0790cf0826a3a8f
SHA256

d19cbc9671b198a242143fe6fff75060d4602cb379052312ecfb2259d85e8067
SHA512

30d0828f52fc73817b09629d3158e6d3c283b729db39f4b53cc7edeec2a7bfe59ae04c1322cdcf6bfdfccc1db243fa18363b0da7d940dfe18f941cecd47ac965
SSDEEP

12288:y3xjKXhUTCIJZSRL54BhtDR2bCjj87msm1KdFYmw:y3JehISRLWhtXjim169

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aa017b808d4180e17c2782b088a83be0_JaffaCakes118

Files

aa017b808d4180e17c2782b088a83be0_JaffaCakes118
.dll regsvr32 windows:4 windows x86 arch:x86

f433e7fcc51e68080022754836705744

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetModuleHandleA
LoadLibraryA
GetProcAddress
ExitProcess
VirtualAlloc
VirtualFree

user32

MessageBoxA

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

n6q6q817
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 52KB - Virtual size: 712KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

o4rkq1lt
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

55myhxtp
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

yjaoa4g9
Size: - Virtual size: 284KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

bthzeubl
Size: 400KB - Virtual size: 404KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

9t1u5j8t
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f433e7fcc51e68080022754836705744

Headers

File Characteristics

Imports

kernel32

user32

Exports

Exports

Sections

.text Size: - Virtual size: 64KB

n6q6q817 Size: 16KB - Virtual size: 16KB

.data Size: - Virtual size: 12KB

.rsrc Size: 52KB - Virtual size: 712KB

o4rkq1lt Size: - Virtual size: 8KB

55myhxtp Size: - Virtual size: 4KB

yjaoa4g9 Size: - Virtual size: 284KB

bthzeubl Size: 400KB - Virtual size: 404KB

9t1u5j8t Size: 4KB - Virtual size: 4KB

.text
Size: - Virtual size: 64KB

n6q6q817
Size: 16KB - Virtual size: 16KB

.data
Size: - Virtual size: 12KB

.rsrc
Size: 52KB - Virtual size: 712KB

o4rkq1lt
Size: - Virtual size: 8KB

55myhxtp
Size: - Virtual size: 4KB

yjaoa4g9
Size: - Virtual size: 284KB

bthzeubl
Size: 400KB - Virtual size: 404KB

9t1u5j8t
Size: 4KB - Virtual size: 4KB