8631e2b954a9d520110897521452a391_JaffaCakes118 | Triage

Sharing

General

Target

8631e2b954a9d520110897521452a391_JaffaCakes118
Size

23KB
MD5

8631e2b954a9d520110897521452a391
SHA1

d3e4f2f17a279c8ba4376093edbd30b648962faa
SHA256

f0c6c67f480125be15719b9a3ac3fcec8f353be7ecc50d2ef85b4cf9b3ab16fa
SHA512

b09c77ae2310d6c788effc35f9ad682cf6f2a6e3b1d087b43461e0c624d9b07a9e6e713b70593ee2d7160fb4b0e9106bfc195d041d93785cc7faf81f14cfe885
SSDEEP

384:XtWCvqqLCyMzcwKEhJkA/bP8mKaO4yALMLAIDW1dEfnmnMXkZyN9oGNVx:QGq4Cx5KEc+bP8mKUxILbKvEfnvmFGP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8631e2b954a9d520110897521452a391_JaffaCakes118

Files

8631e2b954a9d520110897521452a391_JaffaCakes118
.dll windows:4 windows x86 arch:x86

93ff58001183baac7dea15df75d51a42

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

user32

wsprintfA

msvcrt

sprintf

Exports

Exports

input

Sections

.text
Size: 17KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE