674a76b6505b40e1d63081bc5e64817a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

674a76b6505b40e1d63081bc5e64817a_JaffaCakes118
Size

99KB
MD5

674a76b6505b40e1d63081bc5e64817a
SHA1

3286de82ea308a8fc3de72b6b78c18cea789088c
SHA256

e3ed8e5d4e1e40ec1d751b3444e98ec90f55c909ebbc0ce52bb22f807829a439
SHA512

53c80bb5dc0a672e3c93b1729dd4c05cc83883f182f949897c6b27f3d974a440c3df6a4a87e246188a01a8a50cf3d15bc2b5866e398fd5fd882f1856a5a4a07d
SSDEEP

3072:CZOshlFixlQHsjLbJ4iEEzVtPDKih5bJkAF26:CZOaFi4MPl4iEkHDK25dkAF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
674a76b6505b40e1d63081bc5e64817a_JaffaCakes118

Files

674a76b6505b40e1d63081bc5e64817a_JaffaCakes118
.dll regsvr32 windows:4 windows x86 arch:x86

cf4dd59903069a911f8aa145ff671d26

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

EnumResourceLanguagesA
GetSystemTimeAsFileTime
LoadLibraryExA
GetProcAddress
EnumDateFormatsW
SetCalendarInfoA

advapi32

FreeSid

oleaut32

SysFreeString

user32

wvsprintfA

Exports

Exports

DllCanUnloadNow
DllGetClassObject
Mhobikc
DllMain
DllRegisterServer
DllUnregisterServer
ServiceMain

Sections

.none
Size: 96KB - Virtual size: 264KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.none2
Size: 512B - Virtual size: 426B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 224B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.mnon
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_MEM_READ