8703f251d0cef1b5702be9fbfb89e613_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8703f251d0cef1b5702be9fbfb89e613_JaffaCakes118
Size

40KB
MD5

8703f251d0cef1b5702be9fbfb89e613
SHA1

b16d2faa17609621102492a0499273bbfded8c08
SHA256

7a3becc5098dc89d3abeb0e14f1f289c9016e15dae2ffc59d542cdadeaf873f9
SHA512

e4281a1e46fb34c0e52bc6bce4b13d5b00d83eb714fbdbfbe7394ea64adae82fcfae6ec41eef232c84b1afc35c6e809f47d81f80e5722df4db275df9d00d705a
SSDEEP

768:N4Uxn43Ub9WS2lUWJYLhCmn/UxlugZDgIm76LY4hNSIp2P/:N4Uzb4yWJMhLn8PVmIm76M0NSpX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8703f251d0cef1b5702be9fbfb89e613_JaffaCakes118

Files

8703f251d0cef1b5702be9fbfb89e613_JaffaCakes118
.dll windows:5 windows x86 arch:x86

42fb9692a824e417416408cd022b278d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

FindAtomA
GetModuleHandleA
GetProcAddress

user32

GetDesktopWindow

advapi32

RegQueryValueA

Exports

Exports

hgdsdhtde
kcrnvvhw

Sections

.text
Size: 1024B - Virtual size: 711B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 361B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 110B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ