2d252b5b8abb071819f9c4d005ed3b16_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2d252b5b8abb071819f9c4d005ed3b16_JaffaCakes118
Size

106KB
MD5

2d252b5b8abb071819f9c4d005ed3b16
SHA1

c7a1912a57d0d3bff6dbc33800671b6a7c21c69a
SHA256

134a44955f6f3a7577d7c79fc999a61824d3f371d8ba963e9e8fae358e027ab5
SHA512

77ad7e42c7efa43c2658eefe02d786dcb81c491d1ddb8aca6748ae597c6eeaf0e693e8fd8c2abe0ea68677732b41cfb795953926184732d4d9f9f38ed6090d75
SSDEEP

1536:YnlRibqqAmn6VI2+rMP+4MDFrY9lw5rvq/0eFZG2Y7:4kbhAm6WLMP+4+Y9iNv6pFm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2d252b5b8abb071819f9c4d005ed3b16_JaffaCakes118

Files

2d252b5b8abb071819f9c4d005ed3b16_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.text
Size: 4KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 44KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 23KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE