JaffaCakes118_b614fa9f5fa8208d0d177057a9de49c17bab22d4e36018c6305defee1853c22e | Triage

Sharing

General

Target

JaffaCakes118_b614fa9f5fa8208d0d177057a9de49c17bab22d4e36018c6305defee1853c22e
Size

154KB
MD5

4dc1d90708a19ae4deaf80e1c568fb7d
SHA1

6f02d42288348e1ebc06108309d77f51b75f7097
SHA256

b614fa9f5fa8208d0d177057a9de49c17bab22d4e36018c6305defee1853c22e
SHA512

3b9895c2a13115fe3926d632b9ca2a4edd4c1fb629d6f78332e3d9a38141511f6dd18e53e14208f7028e30e2409be62ba3ac8898e99e67a0d4f7b2bc0029154d
SSDEEP

3072:CZ+9Q25AHEf/2gUU7uZAOCIB0IgESXZyX/sS5eqLrNWBC:tQeVf/2gUU76rDeIgESXZmYYa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_b614fa9f5fa8208d0d177057a9de49c17bab22d4e36018c6305defee1853c22e

Files

JaffaCakes118_b614fa9f5fa8208d0d177057a9de49c17bab22d4e36018c6305defee1853c22e
.dll windows:5 windows x86 arch:x86

d6a8e0436f1920a9caa4b8885c9c24ad

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

TranslateMessage

opengl32

glTexSubImage1D

advapi32

RegLoadAppKeyW

ole32

CreateStreamOnHGlobal

kernel32

OpenSemaphoreW
GetModuleHandleW
OutputDebugStringA
LoadLibraryExA
GetProfileSectionA
CloseHandle

Sections

.text
Size: 136KB - Virtual size: 138KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 5KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 832B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ