9465b599b6b27a4662e93343d92c815d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9465b599b6b27a4662e93343d92c815d_JaffaCakes118
Size

23KB
MD5

9465b599b6b27a4662e93343d92c815d
SHA1

f434bc58fd50c25bc4e54f66ca226f19953bc73e
SHA256

9d8aeefff77ccaba1b51981e054b0be4b3429aceeb507384ba94e8f51f4422d1
SHA512

d54f5c2a4bce26fa564fda8699626e786d57d1026ab7e5f9d6dd0a6186979162556faef31d9b92ae2f32696ff13b8b4c29027d916a68e96a1b4f6d1c0dcc0528
SSDEEP

384:MisL1qYDXOfWUbqFjgncNe+NdIoMKA23r8G/UPEfhA9d9:zkRDXmhE8ncbzY23Qg859

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9465b599b6b27a4662e93343d92c815d_JaffaCakes118

Files

9465b599b6b27a4662e93343d92c815d_JaffaCakes118
.dll windows:4 windows x86 arch:x86

7632b18a88b6df43ae18e3614ca026bc

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetProcAddress
LoadLibraryA
GetLastError
Sleep
lstrcmpiA
lstrlenA
CloseHandle
lstrcpyA
GlobalAlloc
GlobalFree
DeleteFileA
FreeLibrary
LoadLibraryExA
SetFilePointer
GetModuleFileNameA
lstrcatA
CreateThread

Exports

Exports

Load2Graphic
StartVideo

Sections

.text
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 734B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ