25aaaf76113b84af6facdcecf26457ff_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

25aaaf76113b84af6facdcecf26457ff_JaffaCakes118
Size

104KB
MD5

25aaaf76113b84af6facdcecf26457ff
SHA1

753f2ac91c12d239c49e96dd0efbac08d7c09fd6
SHA256

8c8768181bd63a0d2b0a67a1163b2086d508ef5ac7dc021235a7aaa0f2269b12
SHA512

d41f0ffbf385c56fc22222c4af36b124274d3eda68bad2996cc1fc8cb69a278cf66dd880107781e47caebbd9a959b93c2b7c3eaf06778722d9dbe2bf06f73aea
SSDEEP

1536:8e/n3y2zFhU9a66hfUK7QOFScE0/yMOCSB4I5mKjidcjT7sTVmN3K6:/DFR66WOouzAT+IcTL6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
25aaaf76113b84af6facdcecf26457ff_JaffaCakes118

Files

25aaaf76113b84af6facdcecf26457ff_JaffaCakes118
.dll windows:4 windows x86 arch:x86

8f8c3b7e2e59d6ddb0f1a48e5d46e5fd

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

FreeLibrary
EnterCriticalSection
LoadLibraryA
LeaveCriticalSection
GetProcAddress

advapi32

RegCloseKey

ole32

IsEqualGUID

oleaut32

VariantCopy

shell32

Shell_NotifyIconA

user32

SetTimer

wininet

InternetOpenA

Exports

Exports

DllCanUnloadNow
DllGetClassObject

Sections

.text
Size: 86KB - Virtual size: 220KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE