eae7bc5d3b23e622a5c99d8b6512dc47_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

eae7bc5d3b23e622a5c99d8b6512dc47_JaffaCakes118
Size

16KB
MD5

eae7bc5d3b23e622a5c99d8b6512dc47
SHA1

131d4aa737db9f68bbb7a6f4cb427136cb4279a2
SHA256

519b55c7d9cd5dda094e5a83008faa53c1469086ac6a1d44e60477b20c05eff7
SHA512

2d0d8da8668a64ee083679946470a3b0fb0993827c516c91595c9e9ffb20c4c7c69423e230d50298177f92782872ec1c5f3fd9253a32f667084951284782157c
SSDEEP

384:8W96ztqlnFj5GoGCmQY4F71+cajcWj9P+Hfz1O1YYOfOJ:8WkgFj9mQY4jagG6r1Op6u

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
eae7bc5d3b23e622a5c99d8b6512dc47_JaffaCakes118

Files

eae7bc5d3b23e622a5c99d8b6512dc47_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

EnHookWindow
UnHookWindow

Sections

CODE
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 160B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 95B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 896B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ