ddff7ff0b56a601aea503e7cdf9f7ac0_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ddff7ff0b56a601aea503e7cdf9f7ac0_JaffaCakes118
Size

66KB
MD5

ddff7ff0b56a601aea503e7cdf9f7ac0
SHA1

b9f8082e65cb15ad5a85bba184a0f3123590cc06
SHA256

3a7ba77da35cc5bfbaeb9a2b29e85153dda3100073c667b51a85428ccb394acc
SHA512

e1bcdce2a9e13d5d69ed460ba81bc96ccaf54e6816e76f765350d8e0d190ceb6e97888ab4cfbd233383b087b5fa3360e94b87c1cc8631de91acce13540321659
SSDEEP

1536:dpZLV1QVXKS2V+3HnnDVU71BYHjVT3gJmDEI4zY:dpZLViRHnR+Cl3emDEh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ddff7ff0b56a601aea503e7cdf9f7ac0_JaffaCakes118

Files

ddff7ff0b56a601aea503e7cdf9f7ac0_JaffaCakes118
.dll windows:4 windows x86 arch:x86

3b6e3b0f276cd8981b021d6bbced6749

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

MessageBoxA

kernel32

ExitProcess
GetSystemTimeAsFileTime
CloseHandle
GetStartupInfoA
GetModuleHandleA

advapi32

RegQueryValueA
RegCloseKey
RegOpenKeyExA

Sections

.text
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.itext
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 23KB - Virtual size: 100KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ