c082f8f4a9f07ac3b6bdafe34748ae28_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c082f8f4a9f07ac3b6bdafe34748ae28_JaffaCakes118
Size

27KB
MD5

c082f8f4a9f07ac3b6bdafe34748ae28
SHA1

c4f6c5d001aed9ab2d31574d3af44e7e8169bd75
SHA256

8f50abe9b2574488ac634c3745c74cf3582ff0712cb454bcbb5e44647be8eb4c
SHA512

d6b6250e1784d12fc16bd94e64be9ef1d12f8a08b60f25d72abca3e119e6b073e9a8008b83343706147ae0c29d695a7b1f05faed37b3dd6ad2d4f3c2e279dd14
SSDEEP

384:8YjM80znbndUdxPnNYaGTLnptsj2lkFuiDmkNLDXE6uurvGUYwdgfelochzvO:10znJ2kptsjOaIkNLQ6uubHpefKg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c082f8f4a9f07ac3b6bdafe34748ae28_JaffaCakes118

Files

c082f8f4a9f07ac3b6bdafe34748ae28_JaffaCakes118
.dll windows:5 windows x86 arch:x86

6cffdb8e7ad8c4be09ae2d0b1ee32146

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

EnumResourceLanguagesA
ExitProcess
FlushFileBuffers
GetACP
GetCommandLineA
GetModuleHandleA
GetOEMCP
GetStartupInfoA
GetVersion
HeapAlloc
MultiByteToWideChar
SetLastError
SetUnhandledExceptionFilter
Sleep
SleepEx
UnmapViewOfFile
VirtualAlloc
VirtualFree
lstrcpyA

msvcrt

__p__commode
__set_app_type
_cexit
exit
free
isdigit
__getmainargs

ole32

CLSIDFromString
CoCreateGuid
CoCreateInstance
CoGetMalloc
CoGetObject
CoInitialize
CoTaskMemAlloc
CoTaskMemFree
StringFromCLSID

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ