19229f2bf1cde52ce17523902381afbc_JaffaCakes118 | Triage

Resubmissions

28-06-2024 19:58

240628-ypy4ystcql 6

28-06-2024 12:45

240628-pzjmkszerb 6

28-06-2024 06:35

240628-hckg2awblc 6

28-06-2024 06:35

240628-hcfh3sycmm 6

Sharing

General

Target

19229f2bf1cde52ce17523902381afbc_JaffaCakes118
Size

2.3MB
MD5

19229f2bf1cde52ce17523902381afbc
SHA1

ba61d9ddfdefa1e8bb7409e2ea5dfb901cb82521
SHA256

5551635d23a74325974b3fb2f60bb4f6a3a4be154ac2fe6ce7a9578c05f2a059
SHA512

a9fbd234737bbbdbb0e2aa97e7877725cebd255d74abd29ec3c57ce0cbc0aa166ce230b67ef0c70b95809ccdd78b762a1d009cf0296753987698d9e509a263e6
SSDEEP

49152:ht94hFwJ5SK3AGMhJt2bKc4wYRhp26hbKD0QbtoyRt7aF:TqhmvSK3TMhJOKyYRe0QJo4uF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
19229f2bf1cde52ce17523902381afbc_JaffaCakes118

Files

19229f2bf1cde52ce17523902381afbc_JaffaCakes118
.dll regsvr32 windows:5 windows x86 arch:x86

eed7fbe546981114257433e0c1cfa25f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetProcAddress
LoadLibraryA
ExitProcess
VirtualAlloc
GetModuleFileNameA

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
start

Sections

.text
Size: 62KB - Virtual size: 62KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ