18ead80c7741f180b121e69b1bb9861d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

18ead80c7741f180b121e69b1bb9861d_JaffaCakes118
Size

37KB
MD5

18ead80c7741f180b121e69b1bb9861d
SHA1

8a838824b760c8258b1df1f058de98c3f187df78
SHA256

ade2d3641a5a637ea6d81bc6d0bff9344f6021d58f0fae548508c0ba5445ba03
SHA512

93b868f80ae5a383dc7795d0d06a29607d6ffd331332d4a3f9990a59628431133b62f58f3c7366ccf93276d518839b8ce8397026ffef85a7a0b85f93a42a7c28
SSDEEP

768:7kgPnf9g/F5XJbeVHFUUXNw2vff0YYo0r:L9gFeVHeUXGaffY/r

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
18ead80c7741f180b121e69b1bb9861d_JaffaCakes118

Files

18ead80c7741f180b121e69b1bb9861d_JaffaCakes118
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rdata
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.pdata
Size: 7KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE