35f17bff472770829a9c887e755b873c_JaffaCakes118 | Triage

Sharing

General

Target

35f17bff472770829a9c887e755b873c_JaffaCakes118
Size

783KB
MD5

35f17bff472770829a9c887e755b873c
SHA1

6aa4e84319d1c244dd1ed31b2ef72c5b99664271
SHA256

3e29e8aac6d91784a504f587729deca0c68aba3565f0e0732e01eabe06f3c4b1
SHA512

4bf4c2c4b38527a4feeff163bdc82675244f5b0eec1b39bd928862c8fd30ef9129e6fc70005f1020dade18cda13002cf8a69a8d32db0fb5a2b444850f6e810fb
SSDEEP

12288:1pix6X9+b7Kvn+u+3Vut8vSVc0dvsIaBMnWGCbFh6j:fYrb7KP8kWsvsI+6eRm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
35f17bff472770829a9c887e755b873c_JaffaCakes118

Files

35f17bff472770829a9c887e755b873c_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

InsertHookOn

Sections

CODE
Size: 682KB - Virtual size: 681KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 8KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 76B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 46KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ