efe574abf45302e3a357be1209783724_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

efe574abf45302e3a357be1209783724_JaffaCakes118
Size

18KB
MD5

efe574abf45302e3a357be1209783724
SHA1

54549cd6ee16b3ec7d5f4c3b69fbccadd4d544c5
SHA256

869e63e9c267e289db4bcc6ea4c91f698196b25873bab0c839387faaded58a0a
SHA512

dba3765b0b9ab89f72dcfb91c76da24cac3ddc78421e771773030fbb299e16d54118a2dde7e4f6a1f79b6a5d0c5f176a46c7076d9bea9723890fd05c43dada2d
SSDEEP

384:oYZPhFSJguh7w80Q+/R25lEQA4PEu5Ok9xzQPtPD1i0lEtb:oYdjSrz+5sEQrExWxEPtBpa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
efe574abf45302e3a357be1209783724_JaffaCakes118

Files

efe574abf45302e3a357be1209783724_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

DllManagerReadProcess
LoadVantiDll

Sections

mian0
Size: - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

mian1
Size: 17KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

mian2
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE