f0863078b45275f5028b30a5905c3a3c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f0863078b45275f5028b30a5905c3a3c_JaffaCakes118
Size

10KB
MD5

f0863078b45275f5028b30a5905c3a3c
SHA1

c807caeed4f24d01ee34cffcd3bee3aa54c36971
SHA256

df35327bed689990a26c65e542a5b8a110237245ccb57e08b76a0b422476fabb
SHA512

9c9ac44ede6b4404f9ff72815fffa946928178228c6fd124a402fa4351e46a50b1216dbe42b5a3b87b1a841a687299a85d8d77f21db2c4e5c6d466e44ee84070
SSDEEP

192:E01muicCyPbWLhNUO0nO73Cznyyzq4XbygNdKKJj6fg1ZkmLpWYp:h1muYyPAUa73UTzq4BA81ZzLUYp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f0863078b45275f5028b30a5905c3a3c_JaffaCakes118

Files

f0863078b45275f5028b30a5905c3a3c_JaffaCakes118
.dll windows:4 windows x86 arch:x86

da8a7b4043ba23ba3e5332146283a952

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

kernel32

GetModuleHandleA
GetProcAddress

gstinterfaces-0.10-0

gst_mixer_get_type

gstaudio-0.10-0

gst_audio_filter_get_type

gstbase-0.10-0

gst_base_transform_get_type

gstcontroller-0.10-0

gst_controller_init

gstreamer-0.10-0

gst_debug_log

libgobject-2.0-0

g_type_name

libglib-2.0-0

g_log

mozcrt19

free

Exports

Exports

gst_plugin_desc

Sections

.MPRESS1
Size: 8KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MPRESS2
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE