1b0898055f50540d115d5c54afb0c119_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1b0898055f50540d115d5c54afb0c119_JaffaCakes118
Size

261KB
MD5

1b0898055f50540d115d5c54afb0c119
SHA1

86371ead46addeeb3b63aa54ed05bbd22e5faac3
SHA256

c2ab9df13c16c44a070b7229cf9e7d671f16dd02e56b8ba9d7a92cc68f458a3e
SHA512

415a4cd3e9dc49af5910f543bc0c44e105af5616ba07de48f44dc7a64e71cc94e843bc54785c27bf17c8df861872cbe40bac34593ee2d06d93a5808dc02b9755
SSDEEP

6144:eyumtsydvTxk3zQ4kqrI9Yb4glyaiED1frpvN/Q:e5GsGFf4hI9Yb4taiEJr/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1b0898055f50540d115d5c54afb0c119_JaffaCakes118

Files

1b0898055f50540d115d5c54afb0c119_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Sections

�d*&0
Size: - Virtual size: 700KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�d*&1
Size: 260KB - Virtual size: 260KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�d*&2
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE