e27128911c206ae80921ab8a0e86db3d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e27128911c206ae80921ab8a0e86db3d_JaffaCakes118
Size

51KB
MD5

e27128911c206ae80921ab8a0e86db3d
SHA1

faa763137d1d570d3cd6eff09c736e0d54bc00ae
SHA256

4cc3d6c28437d0f9ff8a2fc65261fb4b15bf31335ab05cf4a2fed7fca068ed63
SHA512

6ee29c76e041946dd54335c6feec976802cfba13edc06ac3499c35ed46725c54167167af5419f6fea2791e0cb32169f49e31788b45d3cfd42b5c33e25c04d5a5
SSDEEP

1536:zArk1G/4El3O1hhSrG/Gm7Wge8g7f2zq+:qH/Ll3OLhSaP7WgeKzq+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e27128911c206ae80921ab8a0e86db3d_JaffaCakes118

Files

e27128911c206ae80921ab8a0e86db3d_JaffaCakes118
.dll windows:5 windows x86 arch:x86

26c2ac6ea7446dc47b7bc56894882c9d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

shlwapi

UrlCreateFromPathA
UrlCombineW

user32

TranslateMessage
SendMessageA
MessageBeep
DialogBoxIndirectParamA
MessageBoxW
GetDC
DispatchMessageW

advapi32

RegCloseKey

Sections

.text
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Y
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ