0019b52c946fabac78d02f3d3a6c49b9_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0019b52c946fabac78d02f3d3a6c49b9_JaffaCakes118
Size

23KB
MD5

0019b52c946fabac78d02f3d3a6c49b9
SHA1

90fdb08eabf608d9b07c3deb572e670e913835e3
SHA256

eed65dd6bae876f536845711200fc626e59f5d8dfcb65d10fcd4615c5a2c26d2
SHA512

2155ddd4c8e227ff9047556bcf7c11f43e1892a6252bde2eb347cd68597e1501938e6f4c61ad8463631a1c61b20651535fdc647365f2a5bab9eab6e7bc53f0d3
SSDEEP

384:cPyZNjtU2mzQBzR/l6PCdzgyujSmgEAhFoqq4zEin5Ei0C:syZ66LzxgvSmWhFrqYEinWk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0019b52c946fabac78d02f3d3a6c49b9_JaffaCakes118

Files

0019b52c946fabac78d02f3d3a6c49b9_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

EnHookWindow
UnHookWindow
a4e5b47ec457

Sections

CODE
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 232B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 5KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 118B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ