c09f3ddb1bdd170af909cc5ee765d44f_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c09f3ddb1bdd170af909cc5ee765d44f_JaffaCakes118
Size

25KB
MD5

c09f3ddb1bdd170af909cc5ee765d44f
SHA1

67f9547dfb0bb922a7db2b42f65ecd033d33fb18
SHA256

912bf5b7bcdaf6cc138798ad547df1657aaf2d8a3fc4e602fe6b6073cb167bcd
SHA512

ae45c5f2d40221068bd29e12defcb36059e8feef6240dea37aada0976a6e3bcbcf8ad28550b77ea8e60edd19c53a388202d5f7ee6a22c01220da9beb03e593b7
SSDEEP

768:gt9hN8uHvor1yyXjG28gQ7DBqpIRWSanE8JRn:YhaAoPXM3YXSa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c09f3ddb1bdd170af909cc5ee765d44f_JaffaCakes118

Files

c09f3ddb1bdd170af909cc5ee765d44f_JaffaCakes118
.dll windows:4 windows x86 arch:x86

cc6dd015ec27e9f46987ca31273086c2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

EnumResourceLanguagesA
FindResourceA
FlushFileBuffers
FreeResource
GetDateFormatA
GetVersion
LeaveCriticalSection
VirtualAlloc
VirtualFree
lstrcpyA
lstrcpynA

msvcrt

_XcptFilter
__set_app_type
_stricmp
isdigit
realloc
srand
sscanf
wcscmp

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ