adf2db05e19ea9343b5d9da5a10ff55e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

adf2db05e19ea9343b5d9da5a10ff55e_JaffaCakes118
Size

68KB
MD5

adf2db05e19ea9343b5d9da5a10ff55e
SHA1

2ddc11d2eaad45954f784b58cee490e1a02fcdfb
SHA256

d43cbf8bed58f545ff2b14d5e0c6f3d2877a4ca733871923a99a72a440a90be5
SHA512

e8e341c3618a97c93998ca36c17487789e187f31abeb36d1051fe6ddc7edba7d77afcb73e4d4dc74e3454a1644f446c604ae689863a3591f85e2fe59e8c68aef
SSDEEP

1536:uvbRiV0uSAO2/AosRggLgQxElF6C17C6O0oSVIaQH+ZHuo/5zY:mqSAVAos9Le7HO0oSVNQeh/lY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
adf2db05e19ea9343b5d9da5a10ff55e_JaffaCakes118

Files

adf2db05e19ea9343b5d9da5a10ff55e_JaffaCakes118
.dll windows:4 windows x86 arch:x86

7484d55e4c6d3e3283d21bc9846ca468

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

msvcrt

??2@YAPAXI@Z

gdi32

CreateDCA

user32

wsprintfA

Exports

Exports

CancelDll
LoadDll

Sections

.text
Size: 12KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE