2a0c99ca5e1a515d9da278d79b078096_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2a0c99ca5e1a515d9da278d79b078096_JaffaCakes118
Size

6KB
MD5

2a0c99ca5e1a515d9da278d79b078096
SHA1

d42bc833ee1f0cd93f4f0860d87b375c63a5a46d
SHA256

221690162f13812cfd15458e931ce4d6f747383726c98e112a63d255a9441bf3
SHA512

a8338c785e2c65732aa55145e8963534c948611043ad847105f36b26b2a3a0c5b3d843583c2cefe7a2b299af6c3c9784bbb0a7a78b8dd56c939d21809b44bf52
SSDEEP

96:JfZ16dAvqkXHiX7ZjNrYQdFQ96dQH0m0wT9YWHazPUiea+U0cfnp3:xZpvqkEtjVDQH0/wT9JKtuU0Yp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2a0c99ca5e1a515d9da278d79b078096_JaffaCakes118

Files

2a0c99ca5e1a515d9da278d79b078096_JaffaCakes118
.dll windows:6 windows x86 arch:x86

4f68d5aca294ba6c106665821a561897

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

kernel32

GetModuleHandleA
GetProcAddress

libapriconv-1

apr_iconv_mod_noevent

vcruntime140

memset

api-ms-win-crt-runtime-l1-1-0

_cexit

Exports

Exports

iconv_module

Sections

.MPRESS1
Size: 4KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MPRESS2
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE