3cb7e466635e20717b0eb4ef31977a0f_JaffaCakes118 | Triage

Sharing

General

Target

3cb7e466635e20717b0eb4ef31977a0f_JaffaCakes118
Size

184KB
MD5

3cb7e466635e20717b0eb4ef31977a0f
SHA1

88d07bbd40fe322081ff4e41d0cf074f14c7dc63
SHA256

0afb44922eec5824a6a863c9d6bb2f66e5914aa17246da96b73b2099c82d4346
SHA512

997404d33d01d2024f574c3ba67d036bce8254d2cf7d3bf772513fb584a6b082f7be52e9b07015f6aff09946ba58d8ad8447f9d5eca24424145273a003106448
SSDEEP

3072:sDHMD9LnP1KxPqM8/1xYTCKJJ+xpm2s7E7jnR1VzGQiEFMFKsvQ:wMhP1cq7/16CT9jnR1Vz7i5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3cb7e466635e20717b0eb4ef31977a0f_JaffaCakes118

Files

3cb7e466635e20717b0eb4ef31977a0f_JaffaCakes118
.dll windows:5 windows x86 arch:x86

9a51ae24217a1bb6b4e51e037dca80bb

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

TranslateMessage

oleaut32

VarI2FromCy

msvcrt

memset

kernel32

CloseHandle
OutputDebugStringA
CreateFileW
GetModuleFileNameA

advapi32

RegOverridePredefKey

Exports

Exports

FnloderTrRppee

Sections

.text
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 124KB - Virtual size: 121KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ