5a8bd5fc62cb7e430dee45a1d5850921_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5a8bd5fc62cb7e430dee45a1d5850921_JaffaCakes118
Size

18KB
MD5

5a8bd5fc62cb7e430dee45a1d5850921
SHA1

c3875ec4f267e5c75372e3a904dafddba9b9dde8
SHA256

27d275723a2e87f3028a8ec7b577a7d184f2a3cf48181c073a04787b49210d41
SHA512

84699fd2de7f962cae337eb53fb57adf77ba3d83e87666370dda29d25b14a425194c7f80a52b298ca11f418c7ac55516c56721d075a4ca330ea3e21ced58d738
SSDEEP

384:VTkozSwySKrfxi8xUXAZ0zyhHGDL1XIidRNqvHF/iNBY:6ozEdxUcL81Yi+l6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5a8bd5fc62cb7e430dee45a1d5850921_JaffaCakes118

Files

5a8bd5fc62cb7e430dee45a1d5850921_JaffaCakes118
.dll windows:4 windows x86 arch:x86

f09abd934e5cb9b134cfdc55f1f0ca92

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

msvcrt

strcpy

Exports

Exports

input

Sections

.text
Size: 13KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE