2921a5998cd8eb122b4f73542716a41f_JaffaCakes118 | Triage

Sharing

General

Target

2921a5998cd8eb122b4f73542716a41f_JaffaCakes118
Size

41KB
MD5

2921a5998cd8eb122b4f73542716a41f
SHA1

9be6e3111f33c9872f786bbcdb411c42c6b0ab4d
SHA256

c570f5125b20243c27d484a6eafee6fb8a04f6da131b6cab1fc95c1079258623
SHA512

1d43c686ffc067df341a22475c9dabb723d1ebf20a4a9de0d56ca5a6fc3ffb659adf2384fcbac136dde714e89d45fb3461a4cd856364cf8abe15496184d1a2fb
SSDEEP

768:8Y6t/eTPlfiuyW5zhuZ+v0zbTNZUVCODhtp9M:mnnWM/ZOD/c

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2921a5998cd8eb122b4f73542716a41f_JaffaCakes118

Files

2921a5998cd8eb122b4f73542716a41f_JaffaCakes118
.dll windows:4 windows x86 arch:x86

3731939eb7b94e9fd6cab377ca0f351a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetProcAddress
GetTickCount
GetCurrentThread
LoadLibraryA
LocalAlloc
GetVersion
GetSystemInfo
GetModuleHandleA
GetCurrentDirectoryA
CompareStringA
GetVersionExA
GetFileType
CloseHandle

user32

GetFocus
DispatchMessageA
TranslateMessage
BeginPaint
CharNextA
GetMessageA

advapi32

RegCloseKey

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ