f1ec9533537c429761842216cfd301f3_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f1ec9533537c429761842216cfd301f3_JaffaCakes118
Size

42KB
MD5

f1ec9533537c429761842216cfd301f3
SHA1

b70d848a69ae5a13585e52eb7f4757de4410f020
SHA256

dc540afe523cb75587cc845d9b16df8564c37a23d8403f58eba25378e429e40c
SHA512

0b41edffd292029db563d61247d59f3d0cb71cbdf184cdf416c87924e530cf1c980a252afeb7f3a94e5698338e43b160925f875edc33aec2060707a9e08d7f87
SSDEEP

768:YFCD3Z5UCEbJNFI2xp4pZiOVlauZrrHpk9b7WBNHElFa9D07q9cWh:YYDpyC+JI274pndrjpk9mBNy+9b

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f1ec9533537c429761842216cfd301f3_JaffaCakes118

Files

f1ec9533537c429761842216cfd301f3_JaffaCakes118
.dll windows:5 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.text
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 864B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.X_X0
Size: - Virtual size: 396B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.X_X1
Size: - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.X_X2
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 144B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ