00dc7ad314eb7ced5fc5f9036edb860c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

00dc7ad314eb7ced5fc5f9036edb860c_JaffaCakes118
Size

132KB
MD5

00dc7ad314eb7ced5fc5f9036edb860c
SHA1

65f2b68eed5e82c4c52fbfdd2764eae04c7c269f
SHA256

9ed737d908db54a7af18f0823b4b97dfd055cfb8ab6b5aae5190ae6a2ba367ed
SHA512

fece02068b8725a0c748aa12f831c0602e7d142a9a0a7e0a6567642c7e94f75be078b11bb6b45f5adf1f2738c8e90b47977cc0ec8f7aff0c4e3f5c553a23ac1f
SSDEEP

1536:nPxfJgQ4ORr/ytwQdHcODQONc8+P93GFoFH32FmlD9/UDLj1QnDAm2vkawYtWKk7:PVmORr7GHr3cnPJgk2gDRwj1dvDWZKm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
00dc7ad314eb7ced5fc5f9036edb860c_JaffaCakes118

Files

00dc7ad314eb7ced5fc5f9036edb860c_JaffaCakes118
.dll windows:4 windows x86 arch:x86

d71ff74ccfe699004afc74c243196b27

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

fdsksd.pdb

Imports

advapi32

AllocateAndInitializeSid
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
SetFileSecurityA

version

GetFileVersionInfoA

Sections

.text
Size: 88KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 548B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 508B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ