bbc2a29618360aec3b49c8a1de28802c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bbc2a29618360aec3b49c8a1de28802c_JaffaCakes118
Size

280KB
MD5

bbc2a29618360aec3b49c8a1de28802c
SHA1

631d759a2e57798010c0548f334f3e9ff5a5d891
SHA256

60ff1658b750da4091a782d4ee30c7434186e2c4d30eade004da192ffdbb96cc
SHA512

1933d29991a8da4dfb217f7e0b36e2eb95930fbee6edc1cbf7a409fedf86cb07a748ecef1b5e6102493e800cadca413b1f26f3681bb64712a6a11d79c3e4c5a1
SSDEEP

6144:P92AabYSzCkL3Z9g5KKiJrgDz+Y9Gp0JYuP9JB/HcPv:P9Zab/Ck9qghJrEz+Y4qFnBkv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bbc2a29618360aec3b49c8a1de28802c_JaffaCakes118

Files

bbc2a29618360aec3b49c8a1de28802c_JaffaCakes118
.dll windows:4 windows x86 arch:x86

3f6589df04b631c3696c0f2e07023787

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

shfolder

SHGetFolderPathA

kernel32

LoadLibraryA
GetPrivateProfileIntA
GetPrivateProfileStringA
GetModuleFileNameA
WritePrivateProfileStringA
SetFileAttributesA
CopyFileA
CreateDirectoryA
lstrcmpiA
GetProcAddress
FreeLibrary

user32

MessageBoxA
wsprintfA

msvcrt

_adjust_fdiv
malloc
strrchr
_itoa
_access
free
_initterm

Exports

Exports

ConfigureCallback
EnumerateCnxtModem
EnumerateModem
ModemCommand
ModemDiagClose
ModemDiagControl
ModemDiagMonitor
ModemDiagOpen
SetAlerts

Sections

.text
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 985B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 936B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 324B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 256KB - Virtual size: 256KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE