343af982a2004da691918e4b19bfbda0_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

343af982a2004da691918e4b19bfbda0_JaffaCakes118
Size

491KB
MD5

343af982a2004da691918e4b19bfbda0
SHA1

777e66911f86948372eeff0c4ad481efd22d5217
SHA256

32f6fb39eb98da9a1606198c6f546a39eaef1e1f523e06146a11b00fee25fd96
SHA512

a892d4185018c861f63ca0d17c33bc162d106e121a8ecdd996b20bf412a784546f093b72241dcf7bf55ef14921a199ca2a97b22e6c502991813be98d4eb4d3cd
SSDEEP

12288:ukJVm6m4RafNSRTAyTFO8VAtmdet2Ys6Hgs3:7Hm6xgM+YxImgwYs6As

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
343af982a2004da691918e4b19bfbda0_JaffaCakes118

Files

343af982a2004da691918e4b19bfbda0_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

Main

Sections

CODE
Size: 414KB - Virtual size: 414KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 5KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 66B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ