03d47fa1c4545fb51c9d1154d25bcd79_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

03d47fa1c4545fb51c9d1154d25bcd79_JaffaCakes118
Size

325KB
MD5

03d47fa1c4545fb51c9d1154d25bcd79
SHA1

59394ebf8127b3796e2ce3e5348b1025aabc6034
SHA256

91c8857c06c237fc79053440ec6fd57f90dcd41adae6bdf1c5d8ee59c0cd3f2c
SHA512

687e6abec803a0851277b6630d81e2e0e472f1f1070e1d6b4857d68e1596dc40985e4b7a2ae368ee3f7ab5a586244a6c685d8ada962faefd9c100e33296a0c16
SSDEEP

6144:I2d22NK96JAzhy/aXM5u5VBz5+/tnbZBnh0NPGAStjZ7:m2NK96JAv+/tNJeZaj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
03d47fa1c4545fb51c9d1154d25bcd79_JaffaCakes118

Files

03d47fa1c4545fb51c9d1154d25bcd79_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

DelSer
ServiceMain
Setup

Sections

CODE
Size: 256KB - Virtual size: 256KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 110B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.vmp0
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ