3ef4049d6eed84e9343822adea5da840_JaffaCakes118 | Triage

Sharing

General

Target

3ef4049d6eed84e9343822adea5da840_JaffaCakes118
Size

25KB
MD5

3ef4049d6eed84e9343822adea5da840
SHA1

9b8c0141f9422d5dac487050b701b9fe9e4ffcd2
SHA256

adb487273be18001d73945b819e2f43ed22d1aaf3a365f693d32c3e9ad01cec4
SHA512

c8ad334e6319873b5c0ff3301dcbbf8c5d6f1b399531a05e82607fdae1573dd1d515cb90bc9b3b7dc00acc5370d5ea74c47cf60301048c47b2ecec0131e12a0f
SSDEEP

768:+RCZiqdSVQT7MD35tqz1NtF4uhAuh6mt8:+4gqYVQ8DptqntF/L

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3ef4049d6eed84e9343822adea5da840_JaffaCakes118

Files

3ef4049d6eed84e9343822adea5da840_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

WinMain

Sections

CODE
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 180B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 2KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 65B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ