544739c0babe666809b7942a54b46706_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

544739c0babe666809b7942a54b46706_JaffaCakes118
Size

176KB
MD5

544739c0babe666809b7942a54b46706
SHA1

68b7e5f3d3c9d7674f071a55938d7c70567fb4d6
SHA256

c579d2d9cdbe8e1d1f8b3681298512c278dd8b3f35b7a769276d47e98035d859
SHA512

821d111c01c620392c756e71b860859b940e1b2b2580505513bb30f014b44a675850e35d663b2e61426ae50ad798e14d8f1184fc5409cbc1b06a6c372c187d42
SSDEEP

3072:ZV82AU9nzsb9kEjKnP42CbVdyQpYK2pUoYhFmJvgfjtcbCHdCWf:7VzqH+PtCbVo1uTh8JvgfUCQWf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
544739c0babe666809b7942a54b46706_JaffaCakes118

Files

544739c0babe666809b7942a54b46706_JaffaCakes118
.dll windows:4 windows x86 arch:x86

e32cba7efff798c05804851b742fc80c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

EmptyClipboard
GetMenu
IsDlgButtonChecked
DrawTextA
DrawMenuBar

kernel32

GetEnvironmentStrings
GetDiskFreeSpaceA
GetFileAttributesA
VirtualAlloc
ExitProcess
LoadLibraryA
GetDateFormatA

Exports

Exports

7PsYlfNl6lp@4
_9qiXLM4wK1yf8l@8
dqAtp@24
IZhZ9B_W@20
_rmk1JykuWVCOXj@4
tfgngP@16
3G7Pv_CLPnW6r
_kLEtPSFS
Lm2eiloCl0D@20
iwdmF@12

Sections

.text
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 150KB - Virtual size: 325KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
.data
.rdata
.reloc
.rsrc/0/DIALOG/TEXTFILEDLG
.rsrc/0/MANIFEST/1
.xml
.rsrc/0/RCDATA/DVCLAL
.rsrc/0/STRING/4094
.rsrc/0/STRING/4095
.rsrc/1033/BITMAP/BBABORT.bmp
.rsrc/1033/version.txt
.text