42664e425ddd24b99e72b9fe57ffb0d0_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

42664e425ddd24b99e72b9fe57ffb0d0_JaffaCakes118
Size

36KB
MD5

42664e425ddd24b99e72b9fe57ffb0d0
SHA1

82c8f59551876847817a3c04c91a4e5f14ba42e7
SHA256

b555c3b4fba9e3ce26b41cabf90b690435d9132cd9d0d7faafc1aa05906b4dad
SHA512

35a507d3ac814f0b949518c7c916f303811427ff54de3464e2f44b9c0a240afa6aca3f6a81235c8bf4d41f3d355297c225465b73ec168bba9460a8babb57c034
SSDEEP

768:kJoGt7dzrDfpRcGjEnU30VFiY+7EdzhQ0OXpiNv6HOUk3Ug:kJvtBfpRhr0Xs7EZhQhXstONg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
42664e425ddd24b99e72b9fe57ffb0d0_JaffaCakes118

Files

42664e425ddd24b99e72b9fe57ffb0d0_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

JumpGFHookOff
JumpGFHookOn

Sections

j9q2wj0
Size: - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

j9q2wj1
Size: 35KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

j9q2wj2
Size: 253B - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE