d0218a6dd9a16d612686a209738bbbdb_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d0218a6dd9a16d612686a209738bbbdb_JaffaCakes118
Size

13KB
MD5

d0218a6dd9a16d612686a209738bbbdb
SHA1

56ca8ab30dd274aa963a101df4962657ffc1d1d6
SHA256

504779ec4a827b15ee83400d3d1b0fa2c2ecb0e0e084c583cf3a468d537256c6
SHA512

46c5b4607f02ef993d8506d1e13775ac031c14cd8c93fcde8588d5bedc496a31e4c3a735d37cf05d49ed562a09483e2240b0cd9352ab4d1541e24a769b07f194
SSDEEP

192:zx7qbu5S6zWerhM/yYF1PrumCYNlFU8DrJbk2Q6JCUPkojxTNZXuakUyM/odlkPX:86vQjYmCslu8DdQTUjxLXu5UySuloF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d0218a6dd9a16d612686a209738bbbdb_JaffaCakes118

Files

d0218a6dd9a16d612686a209738bbbdb_JaffaCakes118
.dll windows:6 windows x86 arch:x86

8ae857542aa218c6f3b4a32e789d79e7

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msacm32

acmDriverEnum
acmStreamSize
acmFormatEnumA

urlmon

MkParseDisplayNameEx
RegisterMediaTypeClass
IsLoggingEnabledA
ObtainUserAgentString

wininet

HttpAddRequestHeadersW
FreeUrlCacheSpaceW
InternetGetCertByURL

rtutils

RouterLogDeregisterW
TraceDumpExW
TracePrintfW

wsock32

connect
WSAIsBlocking
ord1116
gethostbyname

mpr

WNetGetProviderNameW
WNetGetConnectionA
WNetConnectionDialog
WNetGetLastErrorA
WNetDisconnectDialog1W

Exports

Exports

Fdsffxs

Sections

.text
Size: 1024B - Virtual size: 710B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 904B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE