19481477daa0cd979ca0cb35884162dd_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

19481477daa0cd979ca0cb35884162dd_JaffaCakes118
Size

42KB
MD5

19481477daa0cd979ca0cb35884162dd
SHA1

7349f1433396c8e9d4738a7924ffbe0877c7b444
SHA256

02130eee9ecb9340089c67599f6e129f2a2e9328c1da77ff3c3b37cd95cdea81
SHA512

12bb9185e9b69cdbf1085676751a2d99d6cc8bcfa03204736f2c5a23a623f7ef38d4fa74097015fb5873cad3cd701dd853aa182b8e56ef56a7721eb78a2d3eb5
SSDEEP

768:TCqzyjIR/V3Kg1vw9W/0lyXwmNuWPIZ7kKeZmkitM/kX/kq4V12Q1ORVL3Yjnnon:2qzyjIR/V3Kg1vw9W/0lyXwmNuWPIZ7N

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
19481477daa0cd979ca0cb35884162dd_JaffaCakes118

Files

19481477daa0cd979ca0cb35884162dd_JaffaCakes118
.dll windows:4 windows x86 arch:x86

eee2fb3d9c4bba01d54a864b1fe58021

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

ntdll

memcpy
_chkstk

wininet

InternetUnlockRequestFile
InternetReadFile
InternetConnectA
InternetOpenUrlA
HttpOpenRequestA
HttpQueryInfoA
InternetGetConnectedStateExA
InternetCloseHandle
InternetOpenA
HttpAddRequestHeadersA
HttpSendRequestA
InternetLockRequestFile

kernel32

CreateMutexA
OpenMutexA
GetProcAddress
LoadLibraryA
GetSystemDefaultLCID
GetComputerNameA
GetLastError
IsBadReadPtr
GetFileSize
Sleep
FlushFileBuffers
GetLocalTime
SetEndOfFile
GetModuleFileNameA

user32

CharLowerA

advapi32

GetUserNameA

ole32

CoCreateGuid

Sections

.text
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE