be847470d61ac44d01219dc8958598fa_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

be847470d61ac44d01219dc8958598fa_JaffaCakes118
Size

223KB
MD5

be847470d61ac44d01219dc8958598fa
SHA1

5173e412e6c59107981ab59e59cde38ae4d142c6
SHA256

24ed4aff74b1368b1e224f7a365396af03e45cf1628f57294587c95aff401d8f
SHA512

bdb7f787d08382638ce2071d2288105024f8b184cb41be28c0cc3f5df1f76a75b96ac2f88897d102ed0a6c8ac50ab00484981c3b7f0de4eb056eb3b1b543a483
SSDEEP

3072:WBjIRxNEN+3vNqQjxEyGmLsXjn0SuQGjqhTMMXUwXGlznRfo0fhAo:8EF8+3v0QjTnCIQIadXEzRft

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
be847470d61ac44d01219dc8958598fa_JaffaCakes118

Files

be847470d61ac44d01219dc8958598fa_JaffaCakes118
.dll windows:4 windows x86 arch:x86

53ce8a698508b171888a34f958eaf75b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

shell32

Shell_NotifyIconA

shlwapi

PathIsDirectoryA
SHDeleteKeyA
SHEnumValueA

user32

IsWindow
GetWindowTextLengthA
SetCapture
SetClipboardData
SendMessageW
GetWindowDC
GetMenu
SetClassLongA

kernel32

LocalAlloc
GetUserDefaultLCID
LoadLibraryA
GetTickCount
GetVersionExA
GetCommandLineA
VirtualAllocEx
GlobalAddAtomA
ExitProcess

Exports

Exports

PTy78Mpm
PzCu_2Hb
1hpJCmhiDfGqdv
0trnW@24
svsOArKTq
_xh8iSVA
FADDc

Sections

CODE
Size: 178KB - Virtual size: 178KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 121KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 688B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.htdata
Size: 1024B - Virtual size: 588B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ