44291a4403a9d7b8b153c1fe6267346b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

44291a4403a9d7b8b153c1fe6267346b_JaffaCakes118
Size

524KB
MD5

44291a4403a9d7b8b153c1fe6267346b
SHA1

d25db19f1951df5c08997d2f3e427343f4c23805
SHA256

72621047cb9b705ec6ddcf2e4bd19bccf37c735f28c7eee4768994230da6d65b
SHA512

f1f42aa91b178bcaf19fe1236241c409619d33fc8df8d9d618edd0994825feedb9283523fd1b9ba62ce15a17c157b9b8ce94c1ed9d7d1dd20c86c0c0bea202d2
SSDEEP

384:q2PyZNjtU2mVClhjja93ZtS9+L15O3hoDBmWMvWmg7UzPjNUa8xkTA05:pyZlbwtSU15OrHvWmi0bNUPx0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
44291a4403a9d7b8b153c1fe6267346b_JaffaCakes118

Files

44291a4403a9d7b8b153c1fe6267346b_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

EnBHookBWindow
ge4gdcfsd1
ge4gdcfsd2
ge4gdcfsd3
ge4gdcfsd4
ge4gdcfsd5

Sections

CODE
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 236B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 5KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 179B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ