33d946343e564fe2d36d563bae7f6625_JaffaCakes118 | Triage

Sharing

General

Target

33d946343e564fe2d36d563bae7f6625_JaffaCakes118
Size

164KB
MD5

33d946343e564fe2d36d563bae7f6625
SHA1

06256a4a9d4a3761185bc4d1cb8155148437b0d7
SHA256

1da500a123c65869b5be5ec0701a866b601411c97bb3d632a33a84f4c328d639
SHA512

415dc65f56ac6a0b34698c45a5201da315402ea4dc5f6b950a730e46c8f7b3b1dd610f4c73eba6b08d925e69e661bf222fd46b69efa649116918307c1491aa74
SSDEEP

3072:gqsj3pKWEjFZmb0rq19b8GIJ2hFkMzbeUeXgGED4nLNKYSlY2Yg67iZ:/VJsb0rq1qGIJ2/3zSUewGce9SlVYji

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
33d946343e564fe2d36d563bae7f6625_JaffaCakes118

Files

33d946343e564fe2d36d563bae7f6625_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.text
Size: 139KB - Virtual size: 138KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 974B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ