b993afacec921f95d046a83c6a7073ec_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b993afacec921f95d046a83c6a7073ec_JaffaCakes118
Size

1.3MB
MD5

b993afacec921f95d046a83c6a7073ec
SHA1

bd7075219b19c8dbb146be3ffc523b92a25d6aa4
SHA256

a9a3d65e7cc73aa54c87e60571d9b1ec31f147d8750eb168f066e247fad96b98
SHA512

32617413a5a75a635774d9b682750c460406c5ddda9711bcec47d0cf8207cef8c583835322a0d6511c9a4a96966eef3b65a56a6b63098f0c50fa3f6f6fe82bc4
SSDEEP

24576:MNDguHLGI9mSKv7a5HHaMxjuBiMcOf1dUT4xAj+Hg5gvPy3I290:gF8SKvoaUxc1+T/SAtve

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b993afacec921f95d046a83c6a7073ec_JaffaCakes118

Files

b993afacec921f95d046a83c6a7073ec_JaffaCakes118
.dll windows:5 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Exports

Exports

FreePluginInstance
GetPluginInfo
GetPluginInstance

Sections

Size: 365KB - Virtual size: 2.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 688B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ktdhdxmo
Size: 975KB - Virtual size: 976KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

qtunrdww
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE