af57dae14ae4be48f0772ae2dbddfe55_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

af57dae14ae4be48f0772ae2dbddfe55_JaffaCakes118
Size

230KB
MD5

af57dae14ae4be48f0772ae2dbddfe55
SHA1

dded07578f2c7b526d38a063d4f47aa30e065ad4
SHA256

b77f24c86fab92de1fb825910da6e73618aa4b2e1563e50f0450d2f4eaaf39b6
SHA512

a25fad529be4bb17a05af09b4fa1fdbc40e9c5c8e0b487cb67da0c72b8c0fce79bcf562aa339d2f2e2e246db470a96175f1d59593dbcbf69bd009539b7834af4
SSDEEP

6144:JW2EoE03HKBnOblPuY5lT8jnfkzFrOeDTCfS7d6UMAAv2:Jiy3TlPu8lYzUhfafnv2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
af57dae14ae4be48f0772ae2dbddfe55_JaffaCakes118

Files

af57dae14ae4be48f0772ae2dbddfe55_JaffaCakes118
.dll windows:4 windows x86 arch:x86

3b6e3b0f276cd8981b021d6bbced6749

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

MessageBoxA

kernel32

ExitProcess
GetSystemTimeAsFileTime
CloseHandle
GetStartupInfoA
GetModuleHandleA

advapi32

RegQueryValueA
RegCloseKey
RegOpenKeyExA

Sections

.text
Size: 85KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.itext
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 142KB - Virtual size: 568KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ