434d70ebe1dc7ed86219b78769b590df_JaffaCakes118 | Triage

Sharing

General

Target

434d70ebe1dc7ed86219b78769b590df_JaffaCakes118
Size

148KB
MD5

434d70ebe1dc7ed86219b78769b590df
SHA1

a11f9cca2c4305ce6fa539337cafbba254e92565
SHA256

48370fc372e1522c7b56576d6fa4f3453af9597140f39ede092779850c22bf6f
SHA512

85065430a2810b796e20f6cf733f4ec91874dcd37093e1dada4ee82385b0fd6544bb8786efb78143087aefb7529e23d1e37454e980686e63644944fceb54bb15
SSDEEP

1536:zG4pOfFTs4zB1LLqUOE34ebxoGppoYUz8+Q5DTCJJVsgOK5KzWr3hBgIp0z8aD:zbOds4D+RE3NQz8+Q5HW5KzWDgmT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
434d70ebe1dc7ed86219b78769b590df_JaffaCakes118

Files

434d70ebe1dc7ed86219b78769b590df_JaffaCakes118
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.petite
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE