0407ea0d19730048193c48aef3a4f24e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0407ea0d19730048193c48aef3a4f24e_JaffaCakes118
Size

246KB
MD5

0407ea0d19730048193c48aef3a4f24e
SHA1

6b143516849ad91904b74b6b8e3ebe1917a368df
SHA256

2dbf31823a7fe2d1d910a83f1b8fa00353caff8e44c8da4a2c5c05e6b84b2335
SHA512

33acf6247e8e2b48adc9257ce25e80f08c8e77edb3021490531f276312a467aa909705fcb7b6d7d9f438c6cde29f5c07a04e692cb9e3f3688c3e37918fe250a6
SSDEEP

6144:Tj2Luz8JCSe01lOXslT/kr/zxWW7dyb6zAi+B7PekV:Tjx8Jle0HksljoFhMuzX+BqkV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0407ea0d19730048193c48aef3a4f24e_JaffaCakes118

Files

0407ea0d19730048193c48aef3a4f24e_JaffaCakes118
.dll windows:5 windows x86 arch:x86

a769b82cae0ee0e59eef8acfa5e98597

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

VirtualAllocEx

gdi32

GetStockObject

advapi32

RegOpenKeyExW

ole32

StgOpenStorageEx

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data3
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data4
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data5
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data2
Size: 238KB - Virtual size: 237KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 284B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 200B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 372B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ