d7476a723771b6f13324ceb9e59df481_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

d7476a723771b6f13324ceb9e59df481_JaffaCakes118
Size

481KB
MD5

d7476a723771b6f13324ceb9e59df481
SHA1

c82e7ea68bbed9cdd050436d11ce47e0c1776776
SHA256

1286724aaa68d72a73a117298f27702c9f2fce9a15e0dc4ffeb4a2d153cf6e0f
SHA512

bd246a6e6f2a2bfb3ef2762c997db8cfe44a79d70fce4617d443def0208bbe60c9de186874fab8cbe0384cb451b73699f511c0083a1db366e36a4aa8f3920785
SSDEEP

12288:V3eFrbk8t9jNyejj3EwV4Korm9vxpndFoc:V3+PN/zEwyKf9vl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d7476a723771b6f13324ceb9e59df481_JaffaCakes118

Files

d7476a723771b6f13324ceb9e59df481_JaffaCakes118
.dll regsvr32 windows:4 windows x86 arch:x86

f433e7fcc51e68080022754836705744

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetModuleHandleA
LoadLibraryA
GetProcAddress
ExitProcess
VirtualAlloc
VirtualFree

user32

MessageBoxA

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

by8.gd1.
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 52KB - Virtual size: 712KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

7jcxhfpp
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

0hnuwhtg
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

bv06vx9f
Size: - Virtual size: 292KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

6l03txmp
Size: 408KB - Virtual size: 412KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

3ulu3xtk
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f433e7fcc51e68080022754836705744

Headers

File Characteristics

Imports

kernel32

user32

Exports

Exports

Sections

.text Size: - Virtual size: 64KB

by8.gd1. Size: 16KB - Virtual size: 16KB

.data Size: - Virtual size: 12KB

.rsrc Size: 52KB - Virtual size: 712KB

7jcxhfpp Size: - Virtual size: 8KB

0hnuwhtg Size: - Virtual size: 4KB

bv06vx9f Size: - Virtual size: 292KB

6l03txmp Size: 408KB - Virtual size: 412KB

3ulu3xtk Size: 4KB - Virtual size: 4KB

.text
Size: - Virtual size: 64KB

by8.gd1.
Size: 16KB - Virtual size: 16KB

.data
Size: - Virtual size: 12KB

.rsrc
Size: 52KB - Virtual size: 712KB

7jcxhfpp
Size: - Virtual size: 8KB

0hnuwhtg
Size: - Virtual size: 4KB

bv06vx9f
Size: - Virtual size: 292KB

6l03txmp
Size: 408KB - Virtual size: 412KB

3ulu3xtk
Size: 4KB - Virtual size: 4KB