2af90335fd0015699aa8e8f67bbb1a2c_JaffaCakes118 | Triage

Sharing

General

Target

2af90335fd0015699aa8e8f67bbb1a2c_JaffaCakes118
Size

19KB
MD5

2af90335fd0015699aa8e8f67bbb1a2c
SHA1

88d2f1150f6bd08ec8a5a8f4422b080ec3823679
SHA256

19eb1f00eb26dfdcbc6cc77e6a62ffa2321c3d515d61ae92dd0c80981a3737f4
SHA512

e4a7defadd59a6630066de557756d95c9c54843f5c50a34f54d16545950291be68a5f347055c1cd3950793923dfe1da0215a57758fc760c551880fd886738fcb
SSDEEP

384:G0ojsk2vD1SPclTLI5l0BsclKRiJQwN2AqjH6UZ881kuYd:G1j/2xl/KRiJ7Nzqjn88uz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2af90335fd0015699aa8e8f67bbb1a2c_JaffaCakes118

Files

2af90335fd0015699aa8e8f67bbb1a2c_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

WSPStartup

Sections

.upx0
Size: - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.upx1
Size: 18KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.upx2
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE