097033b6075b0d9267f2ec316459bb98_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

097033b6075b0d9267f2ec316459bb98_JaffaCakes118
Size

14KB
MD5

097033b6075b0d9267f2ec316459bb98
SHA1

d50c1d125b210c4640a7380b6ff71e9f0deee21a
SHA256

a4b6a33d510d2f0918d93924667ee56da97dc091bd67c3b2e03a280af0835a1c
SHA512

afe1f3088b9e5c087e5f1bc9f09023e44501ad456ed296d65bc5c54b65a044311f9be30d4b493b843dbe05492b8087e72d1e62afc4b1c6c37f57fddf78c4d741
SSDEEP

384:pcfZa2vDcNsyySVu2zMZzv3+ODnU8RBsAVxgOsIRJXuGK:8a2wWyPU2a/ZbRBsAVqsbXu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
097033b6075b0d9267f2ec316459bb98_JaffaCakes118

Files

097033b6075b0d9267f2ec316459bb98_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

run

Sections

� �b0
Size: - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

� �b1
Size: 13KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

� �b2
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE