872ede6cf97eceb7631d74c6772a1935_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

872ede6cf97eceb7631d74c6772a1935_JaffaCakes118
Size

6KB
MD5

872ede6cf97eceb7631d74c6772a1935
SHA1

b87bf8cf18fac08063ef8f9065a31158dcae02a0
SHA256

9b19d467ab474ae9e42850d51a73a86746c75857dc1e79ca417c2ad0b16b0153
SHA512

74e261179dfbe194d041cf8cd2ca519539b9f2b71146c5f03233dbde5982fec3e3f2e41feb02ea2c7e23416d6c3f61a143afc828b3e0ea8632a35632d7052c06
SSDEEP

48:y/RxwAqtl9SdM/ml3jcA/o+GInwCSb5yg5pr:LA0qnFL1wzbsg5p

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
872ede6cf97eceb7631d74c6772a1935_JaffaCakes118

Files

872ede6cf97eceb7631d74c6772a1935_JaffaCakes118
.dll windows:6 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\pulse\data\recipes\144679627\base\src\googleclient\sketchup\content\localized\pt-br\SketchUp\Windows\ResourceProjects\common_application\Release_x64\common_applicationrc.pdb

Sections

.rdata
Size: 1024B - Virtual size: 848B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ