28573e5103844f003924334c196231bc_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

28573e5103844f003924334c196231bc_JaffaCakes118
Size

280KB
MD5

28573e5103844f003924334c196231bc
SHA1

48f7d0015bd2d8c22c2b0a6279c183e5f06c58f0
SHA256

9d5c470c9d3fa565893d0dec04fef0fc8aaaba8fabd337cdbd65e6aaa531dad7
SHA512

42901134090069955c86332fd7d0df4b36807751f8672b7efa6c339c617cebf3d8a6d13895bf4f45690f5bde9004531a00ca3e993339f8dc3569285eda127dc8
SSDEEP

6144:GErK4k/3UKyJH6iIfIGOS+3NuICjkDm8V2YwnwoUYvTJs+pR:GEEZyJH6WS+3NGkDOYwnvrTJ7pR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
28573e5103844f003924334c196231bc_JaffaCakes118

Files

28573e5103844f003924334c196231bc_JaffaCakes118
.dll windows:6 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.text
Size: 50KB - Virtual size: 50KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 224KB - Virtual size: 233KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ