288cfb88a802b0e9e46f034bda476806_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

288cfb88a802b0e9e46f034bda476806_JaffaCakes118
Size

5KB
MD5

288cfb88a802b0e9e46f034bda476806
SHA1

34b2282e0c51ca82248eda6825c858e5f93067b7
SHA256

1dd5d898c8595f2a8674164cab907994d2da2c18ec8ba293bcee72ab2fe853e3
SHA512

f534c9ff0c74e89d72010daea4d3ec0ee5fefe12539ca93327f8e097951811571100979e14619d970c7ade3dafa4bdeb20aa9a9985b270284f0f74d20175c7a9
SSDEEP

96:1cPWmRK+pKegIglwD2F5nsuWvdO3jWFeri:1cjp6LluonXWITWk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
288cfb88a802b0e9e46f034bda476806_JaffaCakes118

Files

288cfb88a802b0e9e46f034bda476806_JaffaCakes118
.dll windows:4 windows x86 arch:x86

706115deb8c436cd5ccce9b249bd648e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

FindNextFileA
FindClose
FindFirstFileA
OutputDebugStringA
LoadLibraryA

shell32

SHGetSpecialFolderPathA

msvcrt

strstr
strcmp
strcat
strcpy
strlen
free
_initterm
malloc
_adjust_fdiv

Exports

Exports

G

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 134B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ