25e071e5215e591a73c93f4af2bdb78b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

25e071e5215e591a73c93f4af2bdb78b_JaffaCakes118
Size

20KB
MD5

25e071e5215e591a73c93f4af2bdb78b
SHA1

bb9c06b146b66b5e508534be3e46f478bb747e89
SHA256

3a8e73e51f3d5b3b28a9f3025466c73c2892044e52c184308338df77504be564
SHA512

3ba820680ee09dc659d1b4594c406d935f59b1e9f97ad58c8fb899be93c7107feb96ea5d464b04a6111cf17e5aeb2a9edf5a10438f7abe85ad5d6fbccf148ffd
SSDEEP

384:/puhYYB31EH39+PadSd8gspTXzBoj9cUUHjFJ8vdeZGfz:xuhYYB316tYadMajB9UgjFOv9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
25e071e5215e591a73c93f4af2bdb78b_JaffaCakes118

Files

25e071e5215e591a73c93f4af2bdb78b_JaffaCakes118
.dll windows:5 windows x86 arch:x86

7632b18a88b6df43ae18e3614ca026bc

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetProcAddress
LoadLibraryA
GetLastError
Sleep
lstrcmpiA
lstrlenA
CloseHandle
lstrcpyA
GlobalAlloc
GlobalFree
DeleteFileA
FreeLibrary
LoadLibraryExA
SetFilePointer
GetModuleFileNameA
lstrcatA
CreateThread

Exports

Exports

Load2Graphic
StartVideo

Sections

.text
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 540B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ