3d5e90bf4bd9ee975062f1a67832b719_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3d5e90bf4bd9ee975062f1a67832b719_JaffaCakes118
Size

24KB
MD5

3d5e90bf4bd9ee975062f1a67832b719
SHA1

f20e17d42701449eea7b484606cf245ec2e8342d
SHA256

3692454577c925c1a2abb474c05a69b403b73739bf8b29e7453da903211910c3
SHA512

6d2916566a607b2776fcb536fe270597cc40c1e143d1025dd41429518dcb5b81ec9d3279b0c34fe90163af1428104308ab8a70fef6ad84f903184e462cec18ee
SSDEEP

48:qfTmh2ME0QM1m1c2yCVd8PZ/rPaOl/4Nszcw/1kiAO:DVE0Qwm1c2yC8PZ/1Cw9o

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3d5e90bf4bd9ee975062f1a67832b719_JaffaCakes118

Files

3d5e90bf4bd9ee975062f1a67832b719_JaffaCakes118
.dll windows:4 windows x86 arch:x86

47b95eaa8a92898962a601a6fb44ee48

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcrt

_adjust_fdiv
free
malloc
_initterm

kernel32

DisableThreadLibraryCalls

Sections

.text
Size: 4KB - Virtual size: 382B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 216B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 36B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ