302c570166ec6f03b9c96c37a850b6bd_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

302c570166ec6f03b9c96c37a850b6bd_JaffaCakes118
Size

76KB
MD5

302c570166ec6f03b9c96c37a850b6bd
SHA1

84e6d3c78bfe5fadd036ea7562e9d4953f48e85a
SHA256

2e40ab48f31fd82b00b1af6eb3d27dd1f3706933d879949441010cab1121336d
SHA512

2996530edbba83d316df1ce5671e541c3c577378cccadd7479f9a5a79e67ae22039979d0b5959634c96ee791ec3e05aac97dd4a30c9c1017e0c4223689d7854e
SSDEEP

1536:qnoprsuMvbF4dltqqWBIH70MhxpC61HzcaXE+IA1dCfa5:qnXu5Fq870sfxcYE1i5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
302c570166ec6f03b9c96c37a850b6bd_JaffaCakes118

Files

302c570166ec6f03b9c96c37a850b6bd_JaffaCakes118
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

AC_ClientMain

Sections

.text
Size: - Virtual size: 85KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sl@k0
Size: - Virtual size: 914KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sl@k1
Size: 946KB - Virtual size: 946KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 252B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ