38b4d8bfba341715c585a2b6ac6a31d2_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

38b4d8bfba341715c585a2b6ac6a31d2_JaffaCakes118
Size

67KB
MD5

38b4d8bfba341715c585a2b6ac6a31d2
SHA1

3bc5cd70f8539daaba7305b0f4ffd6a80c4c60d5
SHA256

11296406510bf2aaa434e618bd46cf98cb139574448847d4357be5456b351b39
SHA512

30d169d3c4bc4d7c65ccb244a6282d22bb0b416ac9c1a513178f92c30b425fbb9a0df362b27fb76cabeec66658795986824218eb279820a85c7680afb339093a
SSDEEP

768:pWCG9L5Vpm5BBtpfUYMQNWQInhks3zipAouD59h76FpZ4ihQjfQPgf7ak9zGE:pWC4ryjpfUYPWFWscuD5EOHZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
38b4d8bfba341715c585a2b6ac6a31d2_JaffaCakes118

Files

38b4d8bfba341715c585a2b6ac6a31d2_JaffaCakes118
.dll windows:4 windows x86 arch:x86

1bb3d29c702776b444a57c5a54702e7d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

pd.pdb

Imports

kernel32

Beep
HeapReAlloc
HeapDestroy
OpenEventW
FindResourceExW
FindResourceW
SetLastError
HeapAlloc
GetProcessHeap
HeapFree
CloseHandle
CreateJobObjectA

Sections

.code_01
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 384B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ