926e7c1b59f4fbb21da76853311c6aa0_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

926e7c1b59f4fbb21da76853311c6aa0_JaffaCakes118
Size

6KB
MD5

926e7c1b59f4fbb21da76853311c6aa0
SHA1

dba4d39d99f52f7d9afccd0cd62d4aa34ff22174
SHA256

9ba6eb6dc432f0580418f83267a2915a7d3d5bab6460ebd73370a2ba8ac65bb9
SHA512

29e6d45d884b5ac6c9a08cb5d6980e236120b300f646a3c2f406889d4cb649a6b1e104125214f3d234d2d23539d07c37c6d572a6c2b209b1ca6a0de858647144
SSDEEP

96:gW2tdH4Khsya64m4WZ/tIkEQcQqQPsNjtr7TTPIdWcfnp3:gFtdzZa64u/qkEQ2p7gdWYp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
926e7c1b59f4fbb21da76853311c6aa0_JaffaCakes118

Files

926e7c1b59f4fbb21da76853311c6aa0_JaffaCakes118
.dll windows:4 windows x86 arch:x86

57aca3134caf1dbe69669e2562404769

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

kernel32

GetModuleHandleA
GetProcAddress

msvcp60

??1?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@XZ

msvcrt

free

Exports

Exports

CreateObject

Sections

.MPRESS1
Size: 4KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MPRESS2
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE