31d572c7f0799f9a467ca985246a195a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

31d572c7f0799f9a467ca985246a195a_JaffaCakes118
Size

257KB
MD5

31d572c7f0799f9a467ca985246a195a
SHA1

6c2195cc7fbb93cca114e221153bc2ee7237c699
SHA256

9d36b8c93638f1a98d4d90fd91f524d96aa37cc2bbd6aa994a52132deae501d9
SHA512

2623afe8771d0134839355f80ec0f47fe2bf6c6c9c3cac105112932826b1883a2dbd972e5308722c4f6b14621f8544f83a9f1ec67348727e9a2cb4883a8fe98d
SSDEEP

6144:C6KTZsHDwx0TCAQpFTfnPyrerCqq/KruF:4sHDG0TMAxKg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
31d572c7f0799f9a467ca985246a195a_JaffaCakes118

Files

31d572c7f0799f9a467ca985246a195a_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.text
Size: 160KB - Virtual size: 158KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 280KB - Virtual size: 278KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 976B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ