8ef894ff526ea7c25d000ef0d7909e34_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8ef894ff526ea7c25d000ef0d7909e34_JaffaCakes118
Size

21KB
MD5

8ef894ff526ea7c25d000ef0d7909e34
SHA1

46f3918ee17eba81755919507ab55325a0821c8e
SHA256

4b298c6d5f4065ca3ab1bd0cd41fad08d92a3a7c8e17bedd92392f2b0c7f4733
SHA512

1ee25256d47ace070f4453be7d0dc8d8e6e05d26a6f33e76b1191b96387a4bb632492cdb4f51dda53dd4de0039693d11137782a0cfb2f6b22753f1b6a495f8b4
SSDEEP

384:m/wR6yns8K6t2jhkMjnofY2e+0SZXZ8vK9k26fRb:mY6QsO54n5+0SZuvH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8ef894ff526ea7c25d000ef0d7909e34_JaffaCakes118

Files

8ef894ff526ea7c25d000ef0d7909e34_JaffaCakes118
.dll windows:5 windows x86 arch:x86

7632b18a88b6df43ae18e3614ca026bc

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetProcAddress
LoadLibraryA
GetLastError
Sleep
lstrcmpiA
lstrlenA
CloseHandle
lstrcpyA
GlobalAlloc
GlobalFree
DeleteFileA
FreeLibrary
LoadLibraryExA
SetFilePointer
GetModuleFileNameA
lstrcatA
CreateThread

Exports

Exports

Load2Graphic
StartVideo

Sections

.text
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 618B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ