f7e286a292ab22e1f8d22a4792d5d524_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f7e286a292ab22e1f8d22a4792d5d524_JaffaCakes118
Size

21KB
MD5

f7e286a292ab22e1f8d22a4792d5d524
SHA1

fb833ad7f035e901aad27e3c2dbd5c6fbba2d3a1
SHA256

7b26938af007ef23ebe376cf05b6711d25447d282e1ac399ae6c103789141965
SHA512

486b9270f18feb1e676dba82e46f28c059710814a68da5467119f5f153f3148448768d5de1bb41a31305ba82d21df59ac2c211affd7fb589b911875cb4b2e1ac
SSDEEP

384:wVpYHuYiZ07sGyzMv9a4GD+/GsDUdtrdOStC3S5oTCTQ0nmnnfkugHVnonWNPnTB:MwuYVzCMv9aO/L4d3ttt5oGTzmnMhoWn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f7e286a292ab22e1f8d22a4792d5d524_JaffaCakes118

Files

f7e286a292ab22e1f8d22a4792d5d524_JaffaCakes118
.dll windows:5 windows x86 arch:x86

372166dbcd6b6fbfa89eaa11ecda6dc7

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetProcAddress
LoadLibraryA
GetLastError
Sleep
GetTickCount
lstrcmpiA
lstrlenA
CloseHandle
lstrcpyA
GlobalAlloc
GlobalFree
DeleteFileA
FreeLibrary
LoadLibraryExA
SetFilePointer
GetModuleFileNameA
GetModuleHandleA
lstrcatA
CreateThread
DisableThreadLibraryCalls

Exports

Exports

Export1
Export2

Sections

.text
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 636B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ