2671559ff8d9e292652f75814c8f5a5e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2671559ff8d9e292652f75814c8f5a5e_JaffaCakes118
Size

51KB
MD5

2671559ff8d9e292652f75814c8f5a5e
SHA1

7da606ace91aa385c94da5181393858bd5e82195
SHA256

afa62f2023035b7be38858b9db3aa51cfcccb3ab28e8e6c9db67690d12fa05ce
SHA512

44e6f2cff7a825e1b572dab92178b7d0fdf7e7858db6810aaf079f5df960c1d57958255ec40ba3ff05639bca973ba555ac506399a09b1415b8405fc4d314073e
SSDEEP

768:5kq8irFZHX1pbPEKwJUM5coEhzccpdxqjzbyhGdzfKYU3N62jKfEm:53jl11EKweM2dNxAb9dzfKYU9vOc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2671559ff8d9e292652f75814c8f5a5e_JaffaCakes118

Files

2671559ff8d9e292652f75814c8f5a5e_JaffaCakes118
.dll windows:4 windows x86 arch:x86

cb0ed5229c37274ece18c39f80ceeafc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetProcAddress
LoadLibraryA

advapi32

RegOpenKeyA

gdi32

DeleteDC

ole32

CoCreateGuid

oleaut32

VariantClear

rasapi32

RasEnumEntriesA

shlwapi

StrDupA

user32

GetDC

wininet

InternetOpenA

wsock32

send

Exports

Exports

DLLGetClassObject
Init
Logon
ch
ss

Sections

.text
Size: 48KB - Virtual size: 192KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE