533cb0440d725ef9c42b9c109484a128_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

533cb0440d725ef9c42b9c109484a128_JaffaCakes118
Size

176KB
MD5

533cb0440d725ef9c42b9c109484a128
SHA1

a183f0ae2dba1bbe08a4860ce91c254c04a7a4cf
SHA256

d71780ec557f06158c76325f4a06268c58e88278fbaaed9f88b08a9603411308
SHA512

f343ec017cce3ce2e625bd495d9507f8bfaf84f2207d47a7f48a7f16e8213a092194f7572175c7d7679eed258de7440544c699cd3ac284a6aeb9c6af92c76175
SSDEEP

3072:ZV82AU9nzsb9kEjKnP42CbVdyQpYK2pUoYhFmJvgfjtcbCHZCWf:7VzqH+PtCbVo1uTh8JvgfUCMWf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
533cb0440d725ef9c42b9c109484a128_JaffaCakes118

Files

533cb0440d725ef9c42b9c109484a128_JaffaCakes118
.dll windows:4 windows x86 arch:x86

e32cba7efff798c05804851b742fc80c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

EmptyClipboard
GetMenu
IsDlgButtonChecked
DrawTextA
DrawMenuBar

kernel32

GetEnvironmentStrings
GetDiskFreeSpaceA
GetFileAttributesA
VirtualAlloc
ExitProcess
LoadLibraryA
GetDateFormatA

Exports

Exports

7PsYlfNl6lp@4
_9qiXLM4wK1yf8l@8
dqAtp@24
IZhZ9B_W@20
_rmk1JykuWVCOXj@4
tfgngP@16
3G7Pv_CLPnW6r
_kLEtPSFS
Lm2eiloCl0D@20
iwdmF@12

Sections

.text
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 150KB - Virtual size: 325KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
.data
.rdata
.reloc
.rsrc/0/DIALOG/TEXTFILEDLG
.rsrc/0/MANIFEST/1
.xml
.rsrc/0/RCDATA/DVCLAL
.rsrc/0/STRING/4094
.rsrc/0/STRING/4095
.rsrc/1033/BITMAP/BBABORT.bmp
.rsrc/1033/version.txt
.text