e281f370e4b42e2fdf75b6c51888a921_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e281f370e4b42e2fdf75b6c51888a921_JaffaCakes118
Size

657KB
MD5

e281f370e4b42e2fdf75b6c51888a921
SHA1

464f2f539e1079bcf8a2cc252593f794d9dbe61a
SHA256

256b6a1755054ee88af8b373ade2f1880438286057241e23a6f9c60842f7421c
SHA512

bdfcc13f896c1ac416d07c6f4b4dbae39054eb74d5e94e32133ddfb6ae5c71bc983e9ff08318dac8734d6d35a715a08ca22ddda0a16eeaca28b13269a39c72c4
SSDEEP

12288:pjMVXhrfrXSgsN+/xc7GGXYJ1cKq3IMFr5gU+sOzxEaj0fcgQjmJIFaY:aVXNDE2Gxy1cR3BOtGo4E

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e281f370e4b42e2fdf75b6c51888a921_JaffaCakes118

Files

e281f370e4b42e2fdf75b6c51888a921_JaffaCakes118
.dll windows:5 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 10KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 696B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 828KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

zsofcrdq
Size: 641KB - Virtual size: 644KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

krlelzpk
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE