a73261e530f0b81431562ba39f65f4fe_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a73261e530f0b81431562ba39f65f4fe_JaffaCakes118
Size

132KB
MD5

a73261e530f0b81431562ba39f65f4fe
SHA1

fee18871970fe74faaaff73f96c074d687504a8e
SHA256

7824f9d8c934dee80f094df06a5e92cbb631029f74918509d0b2780b09e3d677
SHA512

52f696c92766a39c32843e85d9a4892526dda3c7af384c126cddb36e6c3d55a1b39b6e7976a3f82ab8d177620ead577cc20b9bc6a46497b5ea586f7277875a35
SSDEEP

3072:6A1tZxSHr3cnPJgk2gDRN8C6P9NPvoHLA34K:620D34RN6P3PQHa4K

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a73261e530f0b81431562ba39f65f4fe_JaffaCakes118

Files

a73261e530f0b81431562ba39f65f4fe_JaffaCakes118
.dll windows:4 windows x86 arch:x86

d71ff74ccfe699004afc74c243196b27

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

fdsksd.pdb

Imports

advapi32

AllocateAndInitializeSid
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
SetFileSecurityA

version

GetFileVersionInfoA

Sections

.text
Size: 88KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 548B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 508B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ