c95cc407bac1e4e82965e832e9f1b2af_JaffaCakes118 | Triage

Sharing

General

Target

c95cc407bac1e4e82965e832e9f1b2af_JaffaCakes118
Size

88KB
MD5

c95cc407bac1e4e82965e832e9f1b2af
SHA1

b84f2f1ce2efb70323ec0d70695aabb642f3b84e
SHA256

e3d9a28edcf14d0ff25abd403292a4aebd8e3e7b588f7185f9fe3f3be573def9
SHA512

ec7f12534172f897ab8a6cbb9904418d850f69904cbcdb33551476e1871c97676d2feabd1ada331ed20dc9f57e88d57558e1790af98d9fd902bd425a2f48ad8b
SSDEEP

1536:gBNJ5Z/stgYqSqjleyGowsm71jjDCleauh3CkBXCfKanJfSpzfx5Fi6rT:m/syYqZjYHo6V2/uhykBXCfznk5pTiWT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c95cc407bac1e4e82965e832e9f1b2af_JaffaCakes118

Files

c95cc407bac1e4e82965e832e9f1b2af_JaffaCakes118
.dll windows:5 windows x86 arch:x86

2abf9b752cac1374ff108c6838aef338

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

shlwapi

StrFormatKBSizeW
PathAddBackslashW
PathBuildRootW

user32

MessageBoxW
DispatchMessageW
TranslateMessage
GetDC
SendMessageA
MessageBeep
DialogBoxIndirectParamA

Sections

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 74KB - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RCODE
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE