b988afd6a7dca7e070030e7d22aa32cb_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b988afd6a7dca7e070030e7d22aa32cb_JaffaCakes118
Size

12KB
MD5

b988afd6a7dca7e070030e7d22aa32cb
SHA1

9e1a780d30b7a04ff0903ebe7ed43ab915fb9547
SHA256

59bef5a027fb03e6dbc9caac82887a3ca12145441a6680317f220cb8a4af1731
SHA512

e7307d2c93207472ee99523557c5a7c9e5461ac26dba29269e04b85f5355681a232e7b1610810b91d466f75f7f11c3300faa40905fb2d1d3e5c4b2681372f397
SSDEEP

192:trTRhdm3T+DEW25DVpgRm7pRtTijFtw0mdBDggfByMmpdmuYeaBvavXZp23auC8u:tnRhAi72Go77tgfw0KmpddaBvy+RPYo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b988afd6a7dca7e070030e7d22aa32cb_JaffaCakes118

Files

b988afd6a7dca7e070030e7d22aa32cb_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

DllManagerReadProcess
HookVantiReadProcess

Sections

mian0
Size: - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

mian1
Size: 11KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

mian2
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE