ff76d409bc37544fefe3d1e63fdc2740_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ff76d409bc37544fefe3d1e63fdc2740_JaffaCakes118
Size

23KB
MD5

ff76d409bc37544fefe3d1e63fdc2740
SHA1

0d75a44c5e217f2bc46cdca3b461351568701f78
SHA256

c535c9e0ff422c49197f6ef27c892ce119275228bd8ddf79f8cea21fc92728c5
SHA512

67e97d8873c8cc4f67ef277dfb5cdb6d48c4de0915a4b02e30f269e91f0eb2f27a0f4c4a09939d965b61c1859197d1681bba8619f59a34e957bd49c2c12585a6
SSDEEP

384:jEpQkuS/5naloGnVseQmeSu82198RaDjmasQZtv8M/v3UD8P9iAJXVyQa6fdmah:wKkh1ksRSu82MRaDi0icP97lVyPAd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ff76d409bc37544fefe3d1e63fdc2740_JaffaCakes118

Files

ff76d409bc37544fefe3d1e63fdc2740_JaffaCakes118
.dll windows:4 windows x86 arch:x86

e4f09f2a0090ba8dca74dd4a5e7e9537

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetSystemDirectoryA
lstrcatA
CloseHandle
CreateFileA
CreateThread
Sleep
WinExec
WriteFile

Sections

.text
Size: 512B - Virtual size: 206B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 308B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 112B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ