aa2a8c2ed739f8d59b07b095f706fbe7_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

aa2a8c2ed739f8d59b07b095f706fbe7_JaffaCakes118
Size

20KB
MD5

aa2a8c2ed739f8d59b07b095f706fbe7
SHA1

7021d53cecf94cf37de1f3d1fc0ded9aadfbc3ae
SHA256

8b1ce5cd7a800af3cc008a8e31a6bbdce781ce5e7a11346def9fc2cb9c481016
SHA512

d4d634952439a13f82d566b22f69c7444afbd3abe6871fe86a021a904158cebe295aef5fd64b40d55341e06400e488f37884a3638aaab6e7de62b5a4f001ad95
SSDEEP

192:hcON8SYp1NxP017y9Yq/o3lA9Oeo+wcZiqFbWbDLdRbegD05HkZGqwCAST:KOKTpT61+tg3lA9OAiEbkdRbegwtU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aa2a8c2ed739f8d59b07b095f706fbe7_JaffaCakes118

Files

aa2a8c2ed739f8d59b07b095f706fbe7_JaffaCakes118
.dll windows:4 windows x86 arch:x86

bd51a645a9c68bd03b2e51586e5cbdcb

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetProcAddress
LoadLibraryA

Exports

Exports

CBTProc
OPThread
SGThread

Sections

.text
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 852B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 954B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ