08661a9461ca5e8e0a80fbe656aff11c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

08661a9461ca5e8e0a80fbe656aff11c_JaffaCakes118
Size

22KB
MD5

08661a9461ca5e8e0a80fbe656aff11c
SHA1

e46af9fd33c1ad6bd9d11f607070e1ef6b624163
SHA256

28aa13f7db611a1db5329ed17787ced12e45b02a78331bbc3477ceb9ba6f8efc
SHA512

0ccd4733eaa694b260290fc5d1ef15da97e69540ffcc8f88ce5f0b7ad1bf47e06d9da9dadc6ae84be6d0a836ac95e3d369803d2ca72cc0b639a0f589729df6a8
SSDEEP

384:JMhN70LG9z9p8yk9xp/HcHl9lQMq4mp7A2kP8JQ9hAY:eB9pp2dc/uMRma2kX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
08661a9461ca5e8e0a80fbe656aff11c_JaffaCakes118

Files

08661a9461ca5e8e0a80fbe656aff11c_JaffaCakes118
.dll windows:4 windows x86 arch:x86

7632b18a88b6df43ae18e3614ca026bc

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetProcAddress
LoadLibraryA
GetLastError
Sleep
lstrcmpiA
lstrlenA
CloseHandle
lstrcpyA
GlobalAlloc
GlobalFree
DeleteFileA
FreeLibrary
LoadLibraryExA
SetFilePointer
GetModuleFileNameA
lstrcatA
CreateThread

Exports

Exports

Load2Graphic
StartVideo

Sections

.text
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 724B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ