dcdb75fe37c4b33c2ad0b772b1689ebb_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dcdb75fe37c4b33c2ad0b772b1689ebb_JaffaCakes118
Size

44KB
MD5

dcdb75fe37c4b33c2ad0b772b1689ebb
SHA1

9555750bc977d50478dbff0f82715d977e9f632e
SHA256

b52fb2c7362b07d8b2afb3930352d3997a24c3e6cb5408da925ff8d1be997e6f
SHA512

40b94eaf18a1ad2313f77ce60e9357e425784c734abebe5c58c1de333e23189381f1780944094c5c9504431d18da49640291dc0dad9293412a338fc341dfdbb1
SSDEEP

768:XVVROUpz0VlQVKHlAQdQ6gpUPYlbJURQ/qTlHepGAdgb4+Xi+WmHyjeNRLAXcq7D:XhViOQDAJkqG4g8u3n+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dcdb75fe37c4b33c2ad0b772b1689ebb_JaffaCakes118

Files

dcdb75fe37c4b33c2ad0b772b1689ebb_JaffaCakes118
.dll windows:4 windows x86 arch:x86

2fe50f6ac8e2f1c7579e6c00c06949a9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

kernel32

GetModuleHandleA
GetProcAddress

gstbase-0.10-0

gst_data_queue_pop

gstreamer-0.10-0

gst_pad_push

libgobject-2.0-0

g_type_name

libglib-2.0-0

g_log

mozcrt19

free

Exports

Exports

gst_plugin_desc

Sections

.MPRESS1
Size: 40KB - Virtual size: 216KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MPRESS2
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE