0d48c177f5e9ccf1c046c4dd12a8adca_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0d48c177f5e9ccf1c046c4dd12a8adca_JaffaCakes118
Size

23KB
MD5

0d48c177f5e9ccf1c046c4dd12a8adca
SHA1

135ee622563e2b44f1bec697204770aeeeb29337
SHA256

488b93a17dfcf9c1e790bbbc62536191c2f9cc436a7b8850546109d615f5e96d
SHA512

b9dd28d1cade109012744d09b86e06fd4f7e074347ac7036bfacee1ef73e76d061424d2b12ef46425c5c066d83cfd8294101567c8fed2e41ba7aef1b8660b6ef
SSDEEP

384:wYPkZyALYjyJ9F3iy8+41CNMbrBEKCw5VWPdKhNKI8xVB4cZ5h5HOs+zusgeORAH:xymer8+41CSbrBZ7W1yUVy69Z+zBOCH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0d48c177f5e9ccf1c046c4dd12a8adca_JaffaCakes118

Files

0d48c177f5e9ccf1c046c4dd12a8adca_JaffaCakes118
.dll windows:4 windows x86 arch:x86

73ce85955fae056f75021247585a60d8

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

EnumResourceTypesA
GetCommandLineA
GetSystemTimeAsFileTime
LocalAlloc
RaiseException
SetCurrentDirectoryA
VirtualAlloc

msvcrt

_wcsicmp
fprintf
realloc
sscanf
wcscat
_exit

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 878B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ