2d6450d5a6730aa14feb1547030112b0_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2d6450d5a6730aa14feb1547030112b0_JaffaCakes118
Size

324KB
MD5

2d6450d5a6730aa14feb1547030112b0
SHA1

de205f1dea1a2c3290a7d5a759faca68dc1a1422
SHA256

71302cfd4b985d6d60620fc683cb2f67ce8db2cd93217170524d86e82c30895f
SHA512

383396238de95c94aba348e871d56f87ce7a7bbff0269616d16625e7c72fc4eb0cf22a65c17f74e6ddb1c992fc7ade688baefe2d6e191cc2247d0da3fb8439fb
SSDEEP

6144:Fk/bumzOgUNBtNSmqk6j3s+ZfcvS03yIkWMNdeafxfvZ1uxXijZmtC31socsbu:FkjRoBt7/M3/caEyrWcfNvZ1uxyjOw1Q

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2d6450d5a6730aa14feb1547030112b0_JaffaCakes118

Files

2d6450d5a6730aa14feb1547030112b0_JaffaCakes118
.dll windows:4 windows x64 arch:x64

52d723e701314d836fad833d34a460ea

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

kernel32

GetModuleHandleA
GetLastError
GetDriveTypeA

user32

GetAltTabInfoW

Exports

Exports

IterationCGI
IterationCursorInterpreter
IterationFreeware
IterationScriptCopy
IterationStartWaveform
IterationVersionAlert

Sections

.text
Size: 167KB - Virtual size: 166KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 148KB - Virtual size: 147KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 752B - Virtual size: 308KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ