JaffaCakes118_078f7d502cc8dd774c582afc682381bbb9ac4be61f0bebf0c7a1135e1db6e017 | Triage

Sharing

General

Target

JaffaCakes118_078f7d502cc8dd774c582afc682381bbb9ac4be61f0bebf0c7a1135e1db6e017
Size

159KB
MD5

ea3db8dde749429c09b34fde4a15d0eb
SHA1

77fae28c34736735da29a9ba2f8c85113889ee6a
SHA256

078f7d502cc8dd774c582afc682381bbb9ac4be61f0bebf0c7a1135e1db6e017
SHA512

09e41ea378a1b88de9b8ce05c5146ffa884812bb7873e62de18f2b49038dbdddba1dac70165e58b70d43a0ebc68d1524e96f01ef81cb605ffc3700d947ff744e
SSDEEP

3072:Vi8CMtKJlXoDFwXrdV/9/uWIdojDZl4epTGmoAc7iTRilfn6wlYY5Zwd:DnClX8WZ7/HrRCADTR0VlTZw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_078f7d502cc8dd774c582afc682381bbb9ac4be61f0bebf0c7a1135e1db6e017

Files

JaffaCakes118_078f7d502cc8dd774c582afc682381bbb9ac4be61f0bebf0c7a1135e1db6e017
.dll windows:5 windows x86 arch:x86

9e8b617b10ada8d5a1fd6f30540a87c8

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

ole32

CreateStreamOnHGlobal
CreatePointerMoniker

advapi32

RegOverridePredefKey

kernel32

OutputDebugStringA
OpenSemaphoreW
GetProfileSectionW
LoadLibraryW
GetProfileSectionA
GetModuleHandleW
CloseHandle
LoadLibraryExW

clusapi

ClusterEnum

opengl32

glTexSubImage1D

user32

TranslateMessage

rasapi32

RasGetConnectionStatistics

Exports

Exports

RtplDtpmimr67

Sections

.text
Size: 139KB - Virtual size: 138KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 6KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 832B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 556B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ