JaffaCakes118_b7d7b84d8bef2c90d4c91f6d46be0242b0373a4e22619ddc0e5e379b608481bd | Triage

Sharing

General

Target

JaffaCakes118_b7d7b84d8bef2c90d4c91f6d46be0242b0373a4e22619ddc0e5e379b608481bd
Size

156KB
MD5

b26a6c5be391fd7c90f2fa9561e2aae8
SHA1

c4bb5c9849f319da5dbc219f8f58b109fbe16774
SHA256

b7d7b84d8bef2c90d4c91f6d46be0242b0373a4e22619ddc0e5e379b608481bd
SHA512

8adb0e6c3fb995cb0b255cf660598caebeb557aad41a4312d977d289531975f22b29176148be85c20e9984ae879b7d18ff9ef6d7d89e27d566bf192023aa152a
SSDEEP

3072:myqDAKfnwLu67wJfAXzgAV12yo1DxbJ6rcKyMYK4f:IaiuwJ6zLV1/Sll5KM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_b7d7b84d8bef2c90d4c91f6d46be0242b0373a4e22619ddc0e5e379b608481bd

Files

JaffaCakes118_b7d7b84d8bef2c90d4c91f6d46be0242b0373a4e22619ddc0e5e379b608481bd
.dll windows:5 windows x86 arch:x86

c9d8b256fabdf7ec02ac0e021f0f72c6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

clusapi

ClusterEnum

advapi32

RegOverridePredefKey

rasapi32

RasGetConnectionStatistics

kernel32

LoadLibraryExA
LoadLibraryW
GetProfileSectionW
GetProfileSectionA
OpenSemaphoreW
CreateFileW
CloseHandle
OutputDebugStringA

opengl32

glTexSubImage1D

user32

TranslateMessage

ole32

CreateStreamOnHGlobal
CreatePointerMoniker

Sections

.text
Size: 136KB - Virtual size: 136KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 6KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 928B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 576B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ