00674a10ebb2228efada3d5b48241c94_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

00674a10ebb2228efada3d5b48241c94_JaffaCakes118
Size

50KB
MD5

00674a10ebb2228efada3d5b48241c94
SHA1

680b93fd36c273809108b335c562a910f9028a66
SHA256

981c0d0aabba7460615e188658b3ca6bf6eafaad6bcaffc1841c4228675a92e2
SHA512

c30bb51e0843f1dc702f9d1becd4297077da35aa98b1de2f83526a9c43fd90ca2089d71d5167b906db8c113cd271cbdf178299064dea797928c02362ce244738
SSDEEP

1536:kBP0ZnaLAd6mMf6ZOFGPHoLkuvrmsDHPe3MiF:kyZqlPfOIhkuvacG37

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
00674a10ebb2228efada3d5b48241c94_JaffaCakes118

Files

00674a10ebb2228efada3d5b48241c94_JaffaCakes118
.dll windows:4 windows x86 arch:x86

389bebbefd360c5181b094e1e35e2c7a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

kernel32

GetModuleHandleA
GetProcAddress

shell32

SHGetFolderPathA

msvcrt

rand

winmm

timeGetSystemTime

Exports

Exports

FindDVDSectors
FindTitleNrOfMainmovie
SetFindEnd

Sections

.MPRESS1
Size: 46KB - Virtual size: 144KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MPRESS2
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE