fb13af12e29e4d9d528134a932e350bf_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fb13af12e29e4d9d528134a932e350bf_JaffaCakes118
Size

25KB
MD5

fb13af12e29e4d9d528134a932e350bf
SHA1

d9f030db8bc9f41c9799cf88131e92cf2375a88f
SHA256

bdc8c892a676565b4b1ed06cc3c3767e45479e58821b1a14a9ba5a0a1c7abcf0
SHA512

497a9daa7333b380058d7b136e80fb6a95f9361970b5dc7e2f5fcc0b1e10f1439c768e1a17cb2027871d523ec6494621e8b82aa75269397818ff81c5a27c65e8
SSDEEP

384:tPHdxz0CTvIRqd+12gQi20tDliOavk/iF1QtQOB3ArrCtjviWDAzP:tUC7AqdSnQKJUOTiF1HOOmts

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fb13af12e29e4d9d528134a932e350bf_JaffaCakes118

Files

fb13af12e29e4d9d528134a932e350bf_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

mymain

Sections

CODE
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 180B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 70B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ