0e65f1e6d4dc01daabd26b9250f54296_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0e65f1e6d4dc01daabd26b9250f54296_JaffaCakes118
Size

553KB
MD5

0e65f1e6d4dc01daabd26b9250f54296
SHA1

9c187efc3ed2c6942c0ada0d14bc1a8526a58ca4
SHA256

17807f1b2a354c25876773988c64d0be18bd685d27c7f25f1d8b84b4df3ac6b6
SHA512

e9425e46e14a030418e5dc1ffd88937333453cd486ff502cfe67de2b41c7e4dcc280a9e528e0040a7655c59717dd56889b30c219918079c590e13cc228269357
SSDEEP

12288:s0pMZLR8eeRb2GaV6go8bHIJcjRNcx2XRQ4WzVMY:sRZd8pa/6NQHjRqx2BQlhM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0e65f1e6d4dc01daabd26b9250f54296_JaffaCakes118

Files

0e65f1e6d4dc01daabd26b9250f54296_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

HookFunc
SetClientVerdict
UnhookFunc
hc

Sections

.drZz0
Size: - Virtual size: 596KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.drZz1
Size: 188KB - Virtual size: 192KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.drZz2
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE