2d6ce1759bbfae43555593e9405b9c8d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2d6ce1759bbfae43555593e9405b9c8d_JaffaCakes118
Size

80KB
MD5

2d6ce1759bbfae43555593e9405b9c8d
SHA1

6f9f34c2dd58f5227afc2715285d499654a32a23
SHA256

cc531497e7a589c781f09a65752cac45325d3eedb6fcf6fbf9711a77623a5550
SHA512

0a757e06f7f255c03e5cf896b064e06c7dc11330cc152b394e9e6192011769c8db105ddc6e0ec1e8d90cd1cad92f193b31e82afda7efc0316a55b769e1abe397
SSDEEP

1536:mGJkHtmITm1N5Wac1T0xgwD9Pk0XjKIvnufwCkB2xR0Vb:kpTm1rclogePVXj/n9oxR0Vb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2d6ce1759bbfae43555593e9405b9c8d_JaffaCakes118

Files

2d6ce1759bbfae43555593e9405b9c8d_JaffaCakes118
.dll windows:4 windows x86 arch:x86

b67b57a0566c8e6576844f924b59d7ee

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcrt

??3@YAXPAX@Z
__CxxFrameHandler
_CxxThrowException
strncpy
??1type_info@@UAE@XZ
free
_initterm
malloc
_adjust_fdiv
??2@YAPAXI@Z
_strlwr
exit
fprintf
_iob
sprintf
sscanf
getenv
_ftol

Exports

Exports

CreateImage

Sections

.text
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 968B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ