e0bc9466e4f3540250ff2ed0cb0978f6_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e0bc9466e4f3540250ff2ed0cb0978f6_JaffaCakes118
Size

20KB
MD5

e0bc9466e4f3540250ff2ed0cb0978f6
SHA1

24a04e76aa9abde400c8b6fe1c981438a42a4fa3
SHA256

eb7194e3c25ba0fb444bcae6f73ff57a63288b25c3892577801aa0cb4579f9d8
SHA512

4e3147a41bb7f0cde9554214bc509a264cb56fc41a2ea0a43b13260b8422b10bdfc026ec4093fb53b2f595623e76d532f58cde4bad25c7753d1a4f0dd425d19c
SSDEEP

384:GxROeyqjfuq4jy9ZzOUngwWnwQy/ZnKUWwRgimg:GxROeyG0jy9ltZW3yv5g

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e0bc9466e4f3540250ff2ed0cb0978f6_JaffaCakes118

Files

e0bc9466e4f3540250ff2ed0cb0978f6_JaffaCakes118
.dll windows:4 windows x86 arch:x86

4f84bdeddbf4a40eb04c427baacdf344

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

kernel32

GetLastError
GetModuleHandleA
GetProcAddress
LoadLibraryExA

Exports

Exports

DllMain
cvhdy
dfksnx
khyahx
kvomfkj
tjxruin
unumyou

Sections

.text
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 616B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 976B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 752B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 172B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 184B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 516B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ