60b871b75824d3fde75117485316fbdc_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

60b871b75824d3fde75117485316fbdc_JaffaCakes118
Size

12KB
MD5

60b871b75824d3fde75117485316fbdc
SHA1

c6c00e3cdb7dcae8b9aa0969474a13482c6ac55e
SHA256

937145e05a67c817b12904c461b6a9ce20b1061770d9e46cc3622e85b1904158
SHA512

6ebf5938c60e0b7837a0656352b9387bffb3f972c045a2fe13d5d553e562ec20a325633c217f6079358c7969b5454030684ddcc20a5079b5d826cea7d1e9a488
SSDEEP

384:5QbRTHxXtmHPBRibG990pvzioz1+aEAafxq+l2Y/sT4de:5ob90HiKSvzz1+Uaqz3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Slamming - B15.dll

Files

60b871b75824d3fde75117485316fbdc_JaffaCakes118
.rar
Slamming - B15.dll
.dll windows:5 windows x86 arch:x86

a8498609d980fce3f21c052f337f5ba9

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

user32

SetRect

d3dx9_43

D3DXCreateFontA

msvcr90

_malloc_crt

Sections

_TEXT
Size: 8KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE