3b741d58d4f84483a63ae81416371479_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3b741d58d4f84483a63ae81416371479_JaffaCakes118
Size

153KB
MD5

3b741d58d4f84483a63ae81416371479
SHA1

4e01ccbf0641121a0f82ed07f968f673797200e4
SHA256

98503f4070da9401f19018164373d7580392db74b0feafaab0f0734af5c150c9
SHA512

c9fb50796468f10d2d0f1f3666ea6f3f321584d1d742521635389226596b132d20b3db98ee891aa8f4c6f5f01bfb3c6da05e3c6fde77e54daa552675ee67c5df
SSDEEP

3072:1K0cUX48d+AI4h8vwZoY0HWhNeRFRQJcsm/Tz9lDtTnwQJS22:1ncUIwdVh8vwH0HWSRBsm/Tz9P3/2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3b741d58d4f84483a63ae81416371479_JaffaCakes118

Files

3b741d58d4f84483a63ae81416371479_JaffaCakes118
.dll windows:4 windows x86 arch:x86

b1631f367d0c49197c36a1bc0fcff3a4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

RtlUnwind
GetModuleHandleA

Exports

Exports

febzgucphctarebunspxzq
lzpxtzpiieblvqhjpwod
vwqytavnwuqpsjduglrvx

Sections

.text
Size: 95KB - Virtual size: 94KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ