a9d8bdb1b2da5d36ab045c18c3898e20_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a9d8bdb1b2da5d36ab045c18c3898e20_JaffaCakes118
Size

103KB
MD5

a9d8bdb1b2da5d36ab045c18c3898e20
SHA1

f8099629cd96dbe78d0a005c863476c90c4f9a6a
SHA256

39671e38ed9df9819d07e84e127a2c255d58c92c310e211b24ea6fac1cc05d7e
SHA512

c4ddcc30dfde526f01c4ea773597c685f6bb5f77276b8c126a283ca0b29ea10d9c4e5f3d4b973d6f7cfa382547348f21c4bfba8695cfde00f2bd481d260922fa
SSDEEP

1536:WJd9deXQd4z/DnkHbcnHYd3LTslKM7NFpuh+HeDT6G7Bh6rPI4JMrz4EYsoxoPCI:WneXjzz7n8ns3feC2cUhALKmoGs7mOvL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a9d8bdb1b2da5d36ab045c18c3898e20_JaffaCakes118

Files

a9d8bdb1b2da5d36ab045c18c3898e20_JaffaCakes118
.dll windows:4 windows x86 arch:x86

8f8c3b7e2e59d6ddb0f1a48e5d46e5fd

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

FreeLibrary
EnterCriticalSection
LoadLibraryA
LeaveCriticalSection
GetProcAddress

advapi32

RegCloseKey

ole32

IsEqualGUID

oleaut32

VariantCopy

shell32

Shell_NotifyIconA

user32

SetTimer

wininet

InternetOpenA

Exports

Exports

DllCanUnloadNow
DllGetClassObject

Sections

.text
Size: 88KB - Virtual size: 220KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE