3bffc684485f974404ea5bb1c2ca3129_JaffaCakes118 | Triage

Sharing

General

Target

3bffc684485f974404ea5bb1c2ca3129_JaffaCakes118
Size

3KB
MD5

3bffc684485f974404ea5bb1c2ca3129
SHA1

3d49c1e237615d3f79c7a4e532ba38df5575227d
SHA256

c9156d482665d3b6912ea3c574598988a7ef759c3320a4afa6335e68ab034fca
SHA512

5b1b9af550019308624951d38b81e97e7895f45b669457d83ee5f6b6b1528426c872c42b075d5271deb8547d6f7ac9edf2c9177684f5431667b92676cc696087

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3bffc684485f974404ea5bb1c2ca3129_JaffaCakes118

Files

3bffc684485f974404ea5bb1c2ca3129_JaffaCakes118
.dll windows:1 windows x86 arch:x86

93431efdd97ad94e66bf525d01896a40

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

Sleep
GetModuleHandleW
VirtualProtect

msvcrt

malloc
free
_beginthread
sprintf

wininet

InternetOpenW
InternetOpenUrlA
InternetCloseHandle

Sections

.flat
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 214B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ