b443cf9d7c2a0371970ff97c2f867445_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b443cf9d7c2a0371970ff97c2f867445_JaffaCakes118
Size

55KB
MD5

b443cf9d7c2a0371970ff97c2f867445
SHA1

8d436df13b746212e0fab9ea2fbcf417dc67916e
SHA256

8a8b33964dac9c6bb962c9cc83123e07ae9853a930db44962e6f3d723817beec
SHA512

a3a65962ef9479b51b0763deb0a790ee8389302a436b469f6332c84a927c1f6d38beea41da17ad9ac9729d039195055f4290a03dd7c8f67a5b2434fda00106c1
SSDEEP

768:/YBPIquhDiR3fCjxdfkB5GdXY18kHBzgMGSXmbkggTWMJ6GFRW4mqiwrK:SAqpwxdOGRYKI8M3XGgqMXLLtK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b443cf9d7c2a0371970ff97c2f867445_JaffaCakes118

Files

b443cf9d7c2a0371970ff97c2f867445_JaffaCakes118
.dll windows:4 windows x86 arch:x86

b8b4ffd3f2ac0701c466eae53c09b9f1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

ToAscii
RegisterClassW
OffsetRect
MessageBoxW
MessageBoxIndirectW
MessageBeep
GetMessageW
FillRect
EmptyClipboard

kernel32

GetFileType
GetModuleHandleW
GetEnvironmentStringsW
FreeLibrary
ExitProcess
HeapCreate
TlsGetValue
LocalFree
GetTickCount

advapi32

RegQueryValueExW
RegEnumValueW

comdlg32

GetOpenFileNameW
GetFileTitleW

Sections

.text
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 23KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ