13045d34d2086191073f02b4bd57b6d9_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

13045d34d2086191073f02b4bd57b6d9_JaffaCakes118
Size

60KB
MD5

13045d34d2086191073f02b4bd57b6d9
SHA1

b52870016b245f8d9f93ae7b32215c2811ba0e61
SHA256

249be2200f97480726e59e3a75a23ea15617dc7d18a23bc80c3179403f39abf1
SHA512

caf95d55c6fef951561454bc0f45504df6b96b8088e1557831a126640f74e289cfc95a0ddd41db4905a55dfd867504a45b8729268c5ab2bc6c22019ca9a028c5
SSDEEP

768:Cj3HneB52UAiFjXQsyHYwze5IzYu/KNOEv1jvnMXCvavw10:WXGAIjX+HYwzeMpEv1jgCn+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
13045d34d2086191073f02b4bd57b6d9_JaffaCakes118

Files

13045d34d2086191073f02b4bd57b6d9_JaffaCakes118
.dll windows:4 windows x86 arch:x86

0cafa218bea0d71fe4e3b48a3d00967f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

ExitProcess
Beep
HeapAlloc
GetProcessHeap
HeapFree
EnumCalendarInfoExA
GetDevicePowerState
SetEndOfFile
CreateFileA

Exports

Exports

nudfgajk

Sections

.text
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 520B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 370B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ