f286cd61396c36fd904c7240165db894_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f286cd61396c36fd904c7240165db894_JaffaCakes118
Size

60KB
MD5

f286cd61396c36fd904c7240165db894
SHA1

266156ef7157a562088ce4478b1f00f137705097
SHA256

a570d18c4a7b93c713f9145fd8a60ac8ed617afac404f2523130321185459c8b
SHA512

af401aef40e70b78f8197e888534fcd56e40f9ffef8fcf1d2f30b250f2997758d3148cc0382a0716c4b26c0f15ae4af3f0378c50f2c2407f6e17f64957133ff0
SSDEEP

1536:f9qaLkQWbfZAoZo0S07PeLe99x6j7tceEVkbn+66VsQqs:lAnaIo0dk1HiX6Qs7s

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f286cd61396c36fd904c7240165db894_JaffaCakes118

Files

f286cd61396c36fd904c7240165db894_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

CreateObject

Sections

CODE
Size: 46KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 2KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 74B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ