eca54dfc14285faee5892cc7eb91e1f1_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

eca54dfc14285faee5892cc7eb91e1f1_JaffaCakes118
Size

19KB
MD5

eca54dfc14285faee5892cc7eb91e1f1
SHA1

02ec1616ce3c1929d040d14e192ddcdaf0e1bc04
SHA256

e6f0ed5e1736ca9041c139cf9e07223ad0d5e14c47d1c9d7c150318a57fee75e
SHA512

d2f0fd1b4ab9ce1030f7d6657fc513f87b0ad41ac557f13cc63ab9c4ab4b5a31125357b505295e1a034979479eb94161d86eb0676b4c8826bde5cadea81c62d0
SSDEEP

384:5TUxvxJ1L8F1eYZb1HpUxwsyn2Tmgay/lMhxmRDMKwbY8NlhH:5g1xJxMJZhHpUxNynaNayShxwRwbY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
eca54dfc14285faee5892cc7eb91e1f1_JaffaCakes118

Files

eca54dfc14285faee5892cc7eb91e1f1_JaffaCakes118
.dll windows:4 windows x86 arch:x86

f09abd934e5cb9b134cfdc55f1f0ca92

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

msvcrt

strcpy

Exports

Exports

input

Sections

.text
Size: 14KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE