b68087ea60ec108e905aeece20e01203_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b68087ea60ec108e905aeece20e01203_JaffaCakes118
Size

89KB
MD5

b68087ea60ec108e905aeece20e01203
SHA1

5d040af4c9ac31d83d0e186184f7575940e20afe
SHA256

b516c97c76185529c5b36963e3c554f7ce00f66196df929ba7903dd23f1df35b
SHA512

97b05b17f9757a86237254166583b51e8144495627c6382cc1303b471e02cd5661c27e83b8da87acf308f133ceb5834cbee7e90231b46009ef279c8b00b1cac5
SSDEEP

768:4ya4L3LgEIkjaXUoFmZFpcqtgNOWEW9n:ZL38saXUfTuqtgNOWEan

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b68087ea60ec108e905aeece20e01203_JaffaCakes118

Files

b68087ea60ec108e905aeece20e01203_JaffaCakes118
.dll windows:4 windows x86 arch:x86

b843944ace23453d54c976b6bfe95c4d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

ExitProcess

user32

MessageBoxIndirectA
BeginPaint
DispatchMessageA
GetDesktopWindow

gdi32

Arc

Sections

.text
Size: 55KB - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.rdata
Size: 18KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.pdata
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE