a2e52edbbe67478c9a9a188862b9c40f_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a2e52edbbe67478c9a9a188862b9c40f_JaffaCakes118
Size

164KB
MD5

a2e52edbbe67478c9a9a188862b9c40f
SHA1

d253a3faf804d98768e0aa2b7bf2edb311bbccb4
SHA256

d8cf515da15df3b6ef2eac4a05a56544050dea37a87591c143e2d0b086fdc4ec
SHA512

2671f71d834384387f5e51009565be1e9e4680b9f506455b57025b47d549e0526b636cb3e56ca73aab77100a3c15e6432628a34aa201ec3b48061cad8fe7f753
SSDEEP

3072:tXmofcJX++p5D2gw1gOPR/XFB2yVHEh7uHdG+pNTkYC36mCEu91y8JM2hdy3ZVPV:tXmYMuU5DLYg2Rf/VWqG+8YXEl8O2m3b

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a2e52edbbe67478c9a9a188862b9c40f_JaffaCakes118

Files

a2e52edbbe67478c9a9a188862b9c40f_JaffaCakes118
.dll windows:4 windows x86 arch:x86

816c5e6aac0f58a8ad140a949ae079bd

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

SetLastError
LoadLibraryA
GetProcAddress
CloseHandle

ole32

CoCreateGuid
CoSetProxyBlanket
OleSetContainedObject

user32

SendMessageA

Exports

Exports

confNetCtrl

Sections

.text
Size: 136KB - Virtual size: 135KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 433B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ