0980c5ce9b01390817285015f5b7910a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0980c5ce9b01390817285015f5b7910a_JaffaCakes118
Size

21KB
MD5

0980c5ce9b01390817285015f5b7910a
SHA1

1be89517764091a71a45d2d794e808094f1662c5
SHA256

e92d6ee02b029a5e4888ea3aeaf61690a15b08f7d042a6622303c34d0ca2d191
SHA512

8103303b8ace9b9d913b76ab3209cc5388693105b620d99fe095c1cfa1cf9a1fd607f84db48f8b3469b7fa15d3df3e15240142ee6e05e40f7b9b51038252a3cd
SSDEEP

384:Yr9n+pOIEsGFWzR82Mp49jhOMP28vbNPwLdqfRt:m9n+pZGEzRLcGt5P7vBYdw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0980c5ce9b01390817285015f5b7910a_JaffaCakes118

Files

0980c5ce9b01390817285015f5b7910a_JaffaCakes118
.dll windows:5 windows x86 arch:x86

7632b18a88b6df43ae18e3614ca026bc

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetProcAddress
LoadLibraryA
GetLastError
Sleep
lstrcmpiA
lstrlenA
CloseHandle
lstrcpyA
GlobalAlloc
GlobalFree
DeleteFileA
FreeLibrary
LoadLibraryExA
SetFilePointer
GetModuleFileNameA
lstrcatA
CreateThread

Exports

Exports

Load2Graphic
StartVideo

Sections

.text
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 618B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ