b2e51d7a8fc32c9fccfbc9bb6e02af74_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b2e51d7a8fc32c9fccfbc9bb6e02af74_JaffaCakes118
Size

26KB
MD5

b2e51d7a8fc32c9fccfbc9bb6e02af74
SHA1

70d85b5952b995feef726088d093abc22fdf1d38
SHA256

573599aaad740a094cd2a7b87431b15204a7a61c5738e62a7f2df7cbba9dc033
SHA512

7fc3f1788697197e1b24bf2dd79f8b2138d31e27039a123f990f94e5e47c378e1675a840584f34f26f726ec34bd75478f3a9e946fe7eb31651590e0b1a27f4ea
SSDEEP

384:8nELuYNBjBZmcm7bnycm9NxyPqj0PY8mGGV0cv2jTJoL7mxsVmRGYARItoiL:8nXYNBjGcwnylrxP0Jm50aLBV/MoiL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b2e51d7a8fc32c9fccfbc9bb6e02af74_JaffaCakes118

Files

b2e51d7a8fc32c9fccfbc9bb6e02af74_JaffaCakes118
.dll windows:4 windows x86 arch:x86

5ac96b335cb88b90db7809dcb49dc4c7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

DispatchMessageW
GetWindowLongW
GetWindowPlacement
ReleaseDC
TranslateMessage

kernel32

ExitProcess
GetLastError
GetProcAddress
LoadLibraryA
VirtualProtect

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 332B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 12KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 5KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE