b0ca4c2e5264371d8647bfff80c883c1_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b0ca4c2e5264371d8647bfff80c883c1_JaffaCakes118
Size

654KB
MD5

b0ca4c2e5264371d8647bfff80c883c1
SHA1

13a8a910ab432e47fa27d0b3ad6bd5c63bc4d352
SHA256

c82bfad8a4850621af20d179328bdf3c4614ce2bdc5c10ec67081571ebdbf381
SHA512

fab64156b937592ba4f557ec02b4e5934bf09a8e4f2662b7a3f2f6791563a6574cff6f4ead8401ec3f2792ddbe6d6e63107476a86931bf827b722507e191837b
SSDEEP

12288:RLwK//J9qW9iSxJXq6Hx33u1suWLM5SCt48oxBMWk6mFL4kMtKXUwW3nbEM8B2:FwgJnAMJXq6R330hlw0Klk6mFL43S8Xv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b0ca4c2e5264371d8647bfff80c883c1_JaffaCakes118

Files

b0ca4c2e5264371d8647bfff80c883c1_JaffaCakes118
.dll windows:5 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 10KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 688B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 824KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

yvrzomck
Size: 638KB - Virtual size: 640KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

bbpwltvw
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE