267c18b72ff9aacade2253d2dffcedc8_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

267c18b72ff9aacade2253d2dffcedc8_JaffaCakes118
Size

320KB
MD5

267c18b72ff9aacade2253d2dffcedc8
SHA1

43074abc0a06c6d4ca5e1db285e6808861324c94
SHA256

f55523ecdfb9f82ce76d19873fbbd9cbb0edfd2762c9114a4c3ce21d694e58d2
SHA512

8ed7b3a73ddba165c81f78bc73b12bc1b67447c468c49ff7d4d0e1d9fe9d56c04cf8eb80707da4efde3e11ecbc5ef75e3229f23a13d716a87036f1b3956046be
SSDEEP

6144:1q1Wf2DMg9peabEP4kjbFZeNO4uaIIglypH3NG4EA5mE2s2i5NhhPvNGMLrt:1I22DMCpeKmpHzIyypXNxnmEAijhf/1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
267c18b72ff9aacade2253d2dffcedc8_JaffaCakes118

Files

267c18b72ff9aacade2253d2dffcedc8_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.text
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 47KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 16KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 57KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 22KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

Size: 25KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 133KB - Virtual size: 424KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ