2729c565f117490f4119c79f4cedd3ea_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2729c565f117490f4119c79f4cedd3ea_JaffaCakes118
Size

166KB
MD5

2729c565f117490f4119c79f4cedd3ea
SHA1

49d28cad1d54f813fcc3d979213027836d644ace
SHA256

c94d874f92622980cdeed466b6deee79f67b672a11803586c581dfd0def9bd0a
SHA512

7e76b01d20d277634134a724b2ea74276f444baebc76ff6b6f18a1953834b8250592a72853ef38bbf25d6ecd0921db5e71b1e2ad93975a731d0bde8e6c8f40e8
SSDEEP

3072:UxPtDfDhSRHY4nDbfagCqKZk5yY/bW0aKzTUozQs303nB2TcG/jOuruvuRJX3qK:UxPtjdeHY4nDWgRAkPbW0DUoV3n/iurp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2729c565f117490f4119c79f4cedd3ea_JaffaCakes118

Files

2729c565f117490f4119c79f4cedd3ea_JaffaCakes118
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.textbss
Size: - Virtual size: 193KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 212KB - Virtual size: 216KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 298B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 72B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 24B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ