2e11af71c545a4ef10f951c0e605f08c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2e11af71c545a4ef10f951c0e605f08c_JaffaCakes118
Size

20KB
MD5

2e11af71c545a4ef10f951c0e605f08c
SHA1

1d9a148a61583491f902b369f4b66d487a439195
SHA256

59dfe563869b0e9f592a25efb3d99ee59a578013d5837fe762d9e97f7b5e9908
SHA512

0d8740a54184c6b8e9523df55126ba9fef758a5833841d585847c024ef5a618f36c9fea0cbf71096c2a4fc03e153dd40c1b430bf27ff01010007cf2853e59316
SSDEEP

384:dPyZNjtU2mb0pZ/E3lwJ0SCShVV5DWr0i13/zdqbkD:1yZJvEOJ0shV/yrv3Ldqbk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2e11af71c545a4ef10f951c0e605f08c_JaffaCakes118

Files

2e11af71c545a4ef10f951c0e605f08c_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

EnCHookCWindow
ge4gdcfsd1
ge4gdcfsd2
ge4gdcfsd3
ge4gdcfsd4
ge4gdcfsd5

Sections

CODE
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 204B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 5KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 179B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ