eb4055989a8f2ad7bdfd0d4be105061f_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

eb4055989a8f2ad7bdfd0d4be105061f_JaffaCakes118
Size

638KB
MD5

eb4055989a8f2ad7bdfd0d4be105061f
SHA1

2f978a339566d90b03ce08f20d17777ebf8e41b9
SHA256

0590dd7538c3a175c3b42d4462b0baa334f2d300e26c24c7f73f9307d966b1ef
SHA512

a8e924669601f3788bc82c763ea160d041888e53ea22765790d0ae5679e9dcc25b4cd32c81a47f81cff1219ed8611b2117c04ff4698725c39c2e06825f5dd126
SSDEEP

12288:lC2vsYpa04Pj9vIn2Bih9O+ciIOT5VtF0wFns6sjhcQ/PS7dH89hZ:WYpadL9vch9FBVVtiysj2ESxH89P

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
eb4055989a8f2ad7bdfd0d4be105061f_JaffaCakes118

Files

eb4055989a8f2ad7bdfd0d4be105061f_JaffaCakes118
.dll windows:5 windows x86 arch:x86

b7847e2129e94d522f37bc3ce8ead24a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

ReadProcessMemory

Exports

Exports

?Init@@YGHXZ

Sections

Size: 23KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 808KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

bemjexiy
Size: 607KB - Virtual size: 608KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

puxejbiz
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE