32e985793758e633b8cf55381bd54b25_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

32e985793758e633b8cf55381bd54b25_JaffaCakes118
Size

522KB
MD5

32e985793758e633b8cf55381bd54b25
SHA1

d22f132cb43e3fa9bd3ce6d2b18d504dc8bdad59
SHA256

ad44b824abd643d48387c7448015c3ee4b7c6968ca995f68a8d75e69485b2d0d
SHA512

76f8e735534a3f2cf1f05cb6ba853e3df02777637400278f806083360b150d6307a7b8d37145bc5f3b730a74cd05443d81bee740ca70c67c18a3020c3f2f7f4d
SSDEEP

384:VJPyZNjtU2mMo7YJphAXchmsZx7NTAYYlRhXElUBnfLRz7dKYkNHul7:VByZs7o7h1Zx+YY9RVf5xKYkZ6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
32e985793758e633b8cf55381bd54b25_JaffaCakes118

Files

32e985793758e633b8cf55381bd54b25_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

EnBHookBWindow
ge4gdcfsd1
ge4gdcfsd2
ge4gdcfsd3
ge4gdcfsd4
ge4gdcfsd5

Sections

CODE
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 188B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 5KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 179B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ