4398c98032f57a6d50d6587b65173aca_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4398c98032f57a6d50d6587b65173aca_JaffaCakes118
Size

98KB
MD5

4398c98032f57a6d50d6587b65173aca
SHA1

f8cd172946c874b37b75da18e4a332866bfa5e80
SHA256

4017adee45af9bf2117731652fb83413d5bf6e218faa64e8292113a8a828e86f
SHA512

3c8dd509ac8410580a0280a31cfc4c851deb5079a0a7688a642b4ae9a3869464c4fe27a98151e5a3922c010368723b43b01945758ba410c0afdccd30fd8672c7
SSDEEP

1536:ut786G4cghmIIrO4cuI/WrOCbrJAg4So9GOhr/rDmNQNokN8LEJ1q5Z75X:Ag69kSKqWrO/RSo+NQNt8LEJ1q5Z75X

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4398c98032f57a6d50d6587b65173aca_JaffaCakes118

Files

4398c98032f57a6d50d6587b65173aca_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

gytfredwse
ServiceMain
youaredog

Sections

Size: 66KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�!��
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ