f61b4754c03440657a6b859bd1c7e8ee_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f61b4754c03440657a6b859bd1c7e8ee_JaffaCakes118
Size

423KB
MD5

f61b4754c03440657a6b859bd1c7e8ee
SHA1

7151f52bacc7fea94b5bedbbd77819fc22ed06db
SHA256

118b05cb3eda49b931c3d33ba8e987a97a147e3d2a8c608e06f65b03c86c8b46
SHA512

28c8ebccbaa08ec518b5f79e46c6ccbe654b7f006798a1082d1c5479fc9c79bed575c50abf0f06d11cd4cc0b20a43f3414b64e581bf2c30c62fe084ad128e7ce
SSDEEP

6144:QdSNp94b/I5V3suTavEOrCHN5qeIHRhWvTRKguxyCsdJXlyRDb2O7fcCnDt2qqD9:x4b/a/avEOrlxsvT4NxmCFqnnspjpj+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f61b4754c03440657a6b859bd1c7e8ee_JaffaCakes118

Files

f61b4754c03440657a6b859bd1c7e8ee_JaffaCakes118
.dll windows:6 windows x86 arch:x86

5f8c0294e42931b54eb49ddc9cabd269

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

SetLastError
GetLastError

secur32

InitSecurityInterfaceA

Exports

Exports

_init@8

Sections

.text
Size: 288KB - Virtual size: 288KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 122KB - Virtual size: 122KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 132B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_TEXT_1
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ