2edba57bdfbbab5e2dde66ac70e5d6a1_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2edba57bdfbbab5e2dde66ac70e5d6a1_JaffaCakes118
Size

14KB
MD5

2edba57bdfbbab5e2dde66ac70e5d6a1
SHA1

5f489241384dd9b61a8d3a7e83ef2903db912319
SHA256

96e810372a8846461bcaa1f6018e161e4684e7c83fc3c4e994be7638e67f30f5
SHA512

861f4ed813e0e67097ede280a5a8a10232eba54d6de4833b4a88c74e0397fac415f4bc744f2a27fb1bf8a312603f4d0fe77b6d3769806f10c7dfaa2970ff5bf0
SSDEEP

192:gBTlX8j9pQtOlffojGDTOZ9+ELmUaO7q2awxA+ZbIc3Tpm61acPZc6OmERH+2Ok:SJOJfumC1b73Agbndm61avmEkk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2edba57bdfbbab5e2dde66ac70e5d6a1_JaffaCakes118

Files

2edba57bdfbbab5e2dde66ac70e5d6a1_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

DllManagerReadProcess
LoadVantiDll

Sections

0119-0
Size: - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

0119-1
Size: 13KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

0119-2
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE