314fbe43b88cc24c24c6509ff84169b9_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

314fbe43b88cc24c24c6509ff84169b9_JaffaCakes118
Size

104KB
MD5

314fbe43b88cc24c24c6509ff84169b9
SHA1

6a2d1f3ca078452cbdc07e5efd2c9aa113f1d94a
SHA256

116a71c42b9e4c1341744f31a7f79c79c52be9f1af378d2b6ee32341931fecf2
SHA512

406ca7a58108887192502a37605792fc7f8d3ab9cc12122a2320eee18f2bfd13b92e622b0659111eb037872a2ede2d547e49c5716b9d3fed850e1682be7b1e1c
SSDEEP

1536:218jK0IcRE627nx35PbxyF3kGYuQbsqjQTM1Lia2pB00j8AypYAgEA1otpVz0f/:ZjlvRE6MTbxS0nukQTGJXa1EAIVgn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
314fbe43b88cc24c24c6509ff84169b9_JaffaCakes118

Files

314fbe43b88cc24c24c6509ff84169b9_JaffaCakes118
.dll windows:4 windows x86 arch:x86

dbe454b1e292824bbc9a12cc8a20b290

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

FreeLibrary
OpenEventA
LoadLibraryExA
GetProcAddress
LeaveCriticalSection

advapi32

RegCloseKey

ole32

IsEqualGUID

oleaut32

LoadTypeLib

shell32

SHGetMalloc

user32

SetTimer

wininet

InternetOpenA

Exports

Exports

DllCanUnloadNow
DllGetClassObject

Sections

.itex
Size: 89KB - Virtual size: 224KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE