df84405a132c58773d8cb6ea366076fe_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

df84405a132c58773d8cb6ea366076fe_JaffaCakes118
Size

14KB
MD5

df84405a132c58773d8cb6ea366076fe
SHA1

47881e229bc14d1f3f54b490f259fc0c12746d0d
SHA256

89724649c7b95be67a773e830fb2d09b907493ad5fd97bf2f18d170f9977fee2
SHA512

ed821edeb0deba8a15df0455481dbe9441e677f98110be45c97e4f2b436846f161c85d801ad37c2fd9c20036a0ccf4163e78ac9db0bc9ef3c1444fa0eba7dab9
SSDEEP

192:02xmNB6VgEi1di5j3lolaf9NK5hM+UTg4xlxNQud+Sd+C1im90wJ+uJGfQTZLV:jQcVMdi5j3l+an90uHd+bCMm90Xux

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
df84405a132c58773d8cb6ea366076fe_JaffaCakes118

Files

df84405a132c58773d8cb6ea366076fe_JaffaCakes118
.dll windows:5 windows x86 arch:x86

a8498609d980fce3f21c052f337f5ba9

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

user32

SetRect

d3dx9_43

D3DXCreateFontA

msvcr90

_malloc_crt

Sections

_TEXT
Size: 8KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE