534110ad1f96cfcddc83922d64b50ac5_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

534110ad1f96cfcddc83922d64b50ac5_JaffaCakes118
Size

176KB
MD5

534110ad1f96cfcddc83922d64b50ac5
SHA1

c9f39ddcaa66d4bc58f7005c28eb3c18548d7117
SHA256

b97ae1d7138cff077b0adfe5d61bfc716580be25153abb2e34c32ae63b3066b1
SHA512

734987641744d19e5ff37c4a0507ccb12886f7e5cb777c2cda115e401ee4e1209edbd99491cdb5a1bfb277b61f781f894ceb953042cd4e32cac759ebef2483b5
SSDEEP

3072:ZV82AU9nzsb9kEjKnP42CbVdyQpYK2pUoYhFmJvgfjtcbCHZCWf:7VzqH+PtCbVo1uTh8JvgfUCMWf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
534110ad1f96cfcddc83922d64b50ac5_JaffaCakes118

Files

534110ad1f96cfcddc83922d64b50ac5_JaffaCakes118
.dll windows:4 windows x86 arch:x86

e32cba7efff798c05804851b742fc80c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

EmptyClipboard
GetMenu
IsDlgButtonChecked
DrawTextA
DrawMenuBar

kernel32

GetEnvironmentStrings
GetDiskFreeSpaceA
GetFileAttributesA
VirtualAlloc
ExitProcess
LoadLibraryA
GetDateFormatA

Exports

Exports

7PsYlfNl6lp@4
_9qiXLM4wK1yf8l@8
dqAtp@24
IZhZ9B_W@20
_rmk1JykuWVCOXj@4
tfgngP@16
3G7Pv_CLPnW6r
_kLEtPSFS
Lm2eiloCl0D@20
iwdmF@12

Sections

.text
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 150KB - Virtual size: 325KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
.data
.rdata
.reloc
.rsrc/0/DIALOG/TEXTFILEDLG
.rsrc/0/MANIFEST/1
.xml
.rsrc/0/RCDATA/DVCLAL
.rsrc/0/STRING/4094
.rsrc/0/STRING/4095
.rsrc/1033/BITMAP/BBABORT.bmp
.rsrc/1033/version.txt
.text