19a8cf9ba6549170529c2810bacaa06d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

19a8cf9ba6549170529c2810bacaa06d_JaffaCakes118
Size

28KB
MD5

19a8cf9ba6549170529c2810bacaa06d
SHA1

b98e1ce1764b91a9a2e2ce12f201e8a0f54eeb86
SHA256

955ffe6c7c2cb587c73538866cd97ee082f88103b2d456f304a7deaf580bb6d7
SHA512

22756bc12ff548a4779be1a72607cb1c9f1b7f127c74b132b70deb83fb3959b9dd32332b47ca6afc905f63c36710146456800de9b7b7c1748490c522bfbb7f81
SSDEEP

384:+Hhn1ScRenAt08jUFOqUXq2jlyZdGz+42ZqN2FcRbsZ3fJW3X48yJE86xaLchFs:+SlAt/BqUXqjZdGz7nNSZ3f+JaEDkci

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
19a8cf9ba6549170529c2810bacaa06d_JaffaCakes118

Files

19a8cf9ba6549170529c2810bacaa06d_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

Size: 268KB - Virtual size: 896KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 52KB - Virtual size: 106KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 748KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

hjwplrko
Size: 568KB - Virtual size: 568KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

mdnduxia
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

mdnduxia
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE