3a8633da4a87e5c0e707e11bde379b63_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3a8633da4a87e5c0e707e11bde379b63_JaffaCakes118
Size

89KB
MD5

3a8633da4a87e5c0e707e11bde379b63
SHA1

ffdce513de44e272a2edc5e5687e592fb9202caf
SHA256

738907196983520a8c165b28e82572c2e7a2d6abd2a26bda5b577b17b8b24611
SHA512

4310e07ce094afb0c272b986a58fd494444d15197050e6c596a21d7a3f224704f2157315e910f49c6d650a59ed225d07bda3364ac30f15120b41f5994435248b
SSDEEP

1536:/YaM0Fu1KM/UFH2LGTKx/GjmgNK73dueJYlz5+I6CaUev+6ukpjtZDGUB4GTZ:AalFuYwcHOG+Js9NK7NueJYlV+0fsz5T

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3a8633da4a87e5c0e707e11bde379b63_JaffaCakes118

Files

3a8633da4a87e5c0e707e11bde379b63_JaffaCakes118
.dll regsvr32 windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
JumpHookOff
JumpHookOn

Sections

le
Size: - Virtual size: 176KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

9ovrvojx
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

pbmt5
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE