35aa3e5edaa11f6ef7590f2ab6f4c607_JaffaCakes118 | Triage

Sharing

General

Target

35aa3e5edaa11f6ef7590f2ab6f4c607_JaffaCakes118
Size

105KB
MD5

35aa3e5edaa11f6ef7590f2ab6f4c607
SHA1

7b65be5e9ca4bbc0b487c516a10fb6645e3a1730
SHA256

a6657acdcdefa9982764fe37c64f1796ac97e6f552e1941ad3c9a247b7e08c60
SHA512

62076aac3ea1e088185dc9acac0f124e622f2c59540f8f7e954164a5e164229a2d58ad198ca3a9990d866fecf98f391fa0315f69625dfca0bf71b33b30862a28
SSDEEP

3072:FgQ2VvNnUefCjIAsGqaxGq5NbOkouR8rKJ:AVvNnUJ8A9Nzwy8rKJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
35aa3e5edaa11f6ef7590f2ab6f4c607_JaffaCakes118

Files

35aa3e5edaa11f6ef7590f2ab6f4c607_JaffaCakes118
.dll windows:4 windows x86 arch:x86

8f8c3b7e2e59d6ddb0f1a48e5d46e5fd

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

FreeLibrary
EnterCriticalSection
LoadLibraryA
LeaveCriticalSection
GetProcAddress

advapi32

RegCloseKey

ole32

IsEqualGUID

oleaut32

VariantCopy

shell32

Shell_NotifyIconA

user32

SetTimer

wininet

InternetOpenA

Exports

Exports

DllCanUnloadNow
DllGetClassObject

Sections

.text
Size: 88KB - Virtual size: 220KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE