d04722bc28a8925dbc77ae01f36856c9_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d04722bc28a8925dbc77ae01f36856c9_JaffaCakes118
Size

1.5MB
MD5

d04722bc28a8925dbc77ae01f36856c9
SHA1

72a0b8bdb02e022f7a8015e139ee34d21c2a5483
SHA256

d4ff255e73d14ee9e8732742bacece61e98da05c4facbd9effaad85ccc10bc75
SHA512

e35ac9f3af2311e2908978891fe8035112194c5d40a5349bac1b169d4447bdc89ad5ca059ebc78caf8ba5d7e275e96d21f3d508ae478076b5129542aef07a88e
SSDEEP

24576:vFv3S9EXRY3doVSWy5P6AwLwFTrY54Bf30Si7xa8taLAr4dQ6Nf:vJHRvwFTk54FdAacr36Nf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d04722bc28a8925dbc77ae01f36856c9_JaffaCakes118

Files

d04722bc28a8925dbc77ae01f36856c9_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

ExpireCurrentKey
GetEnvParam
IncrementCounter
InstallGamesBarKey
InstallKey
SetDefaultKey

Sections

.text
Size: - Virtual size: 110KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text1
Size: 664KB - Virtual size: 704KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.adata
Size: 52KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data1
Size: 116KB - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc1
Size: 36KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.pdata
Size: 620KB - Virtual size: 640KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ