77a275e1fd49d428d771e9a4aea1789b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

77a275e1fd49d428d771e9a4aea1789b_JaffaCakes118
Size

91KB
MD5

77a275e1fd49d428d771e9a4aea1789b
SHA1

5f220b4ac255ae4b253e58888a15a99a9645cad3
SHA256

d96c106d75a90b099283804c95cbb0764d1b9bf0f2ffa3b31b1a8bbe846f4918
SHA512

f18b8889fb44d53a5418a632b6925d7294f83e69182207e8b878ae52211b4de0470a8bae3642c12104423359bb00986db637fa4066a3e92f2126723ce6f9181a
SSDEEP

1536:Fbo3PEXZ4tgFG3IYF+B0QaE/L1pwrrTgjH2SyB2wl38CmfOQADk14bsy:ifs4CWoYqLPwrrEjhyBn8CEA5Z

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
77a275e1fd49d428d771e9a4aea1789b_JaffaCakes118

Files

77a275e1fd49d428d771e9a4aea1789b_JaffaCakes118
.dll windows:5 windows x86 arch:x86

307b7c38293e0238cc18aac5fe10cf32

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetCommandLineA
VirtualProtect
GetModuleHandleA
ExitProcess
SetConsoleScreenBufferSize
Heap32ListFirst
GetLastError

advapi32

AdjustTokenGroups

Exports

Exports

Qbbeijs
Kwjwtgdwldk
Wopdgpbegnp

Sections

.text
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.jdata1
Size: 16B - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 83KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.inull
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ