5ba2f7f1fe31868de5e7ebc5e3d421b5_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5ba2f7f1fe31868de5e7ebc5e3d421b5_JaffaCakes118
Size

31KB
MD5

5ba2f7f1fe31868de5e7ebc5e3d421b5
SHA1

cc14cf16cfd470797aeaf719cb495807e6c42493
SHA256

62066143c62a7d49e43c69778b7d7709a54b2d01ab733c6796c692c70e117790
SHA512

0b79bef744a4d8a6fb4f47aa22021197a521048706e7238cff1864b3b12ddd8bc87437da03ada41a52a12997c38a13778ea248b6a6defa99c0842d9f785e4a59
SSDEEP

768:wiYdgYMpyWE0dcnAJl+tX30Idz3FJqzWxksTpQZ00mT9voUA7D:wbd5ZWE0WAJQ30Inrzu00mT9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5ba2f7f1fe31868de5e7ebc5e3d421b5_JaffaCakes118

Files

5ba2f7f1fe31868de5e7ebc5e3d421b5_JaffaCakes118
.dll windows:4 windows x86 arch:x86

79b3362178937bf9559741c46bb9e035

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

kernel32

GetModuleHandleA
GetProcAddress

Exports

Exports

DRM_GetPCRandomDLL
DRM_VerifyAuth_PCDLL

Sections

.MPRESS1
Size: 27KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MPRESS2
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE