ab2f812e73436dbdc349f7f40b333189_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ab2f812e73436dbdc349f7f40b333189_JaffaCakes118
Size

106KB
MD5

ab2f812e73436dbdc349f7f40b333189
SHA1

11845b264abfaf671d4bd206ba87963cc1d2fba0
SHA256

f7358ced0e7a4d9bb5f9d2839c5df933d00034e7ecdbce09dc916cf889cbdd42
SHA512

8546edd41ef37f8bfcad9148950f9e01a6c04fe7d735c6c700e8adf65dd037e2afb24685c4c976f0337e833bf3cb46fa138b2365345cf7f3ef244853ead53e27
SSDEEP

3072:1EtwOHfgNAJxuaHD+2+cpmvRdoUIOsMqXIm6j:QxHfgNMxP62+H5doUIOLXm6j

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ab2f812e73436dbdc349f7f40b333189_JaffaCakes118

Files

ab2f812e73436dbdc349f7f40b333189_JaffaCakes118
.dll windows:4 windows x86 arch:x86

dbe454b1e292824bbc9a12cc8a20b290

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

FreeLibrary
OpenEventA
LoadLibraryExA
GetProcAddress
LeaveCriticalSection

advapi32

RegCloseKey

ole32

IsEqualGUID

oleaut32

LoadTypeLib

shell32

SHGetMalloc

user32

SetTimer

wininet

InternetOpenA

Exports

Exports

DllCanUnloadNow
DllGetClassObject

Sections

.itex
Size: 89KB - Virtual size: 224KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE