10e77e103dc951718b78baef9a00ba70_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

10e77e103dc951718b78baef9a00ba70_JaffaCakes118
Size

15KB
MD5

10e77e103dc951718b78baef9a00ba70
SHA1

499732144817ce5842b2b30a6bbcae4ae23658a4
SHA256

1515bc33e2ba4c243f7006064f014037b3a609cb15a490b951858deba414fa77
SHA512

e3b6af0fa81fc2b2b85728efa9fb7d18cd189d647e657b0848b666a4ee52ede6b6616e84b5360f54a44e77f450c3e6c357229d486bc4be8ebc7939de01f6a075
SSDEEP

384:4PZW7QKdh4+DLAfiH31UYOsIeYHqQlk11ai0lEtb:4PfYhJDWY5YflkSpa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
10e77e103dc951718b78baef9a00ba70_JaffaCakes118

Files

10e77e103dc951718b78baef9a00ba70_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

DllManagerReadProcess
LoadVantiDll

Sections

mian0
Size: - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

mian1
Size: 14KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

mian2
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE