4ba75472e1a255235c0cb1fbc013ef87_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4ba75472e1a255235c0cb1fbc013ef87_JaffaCakes118
Size

90KB
MD5

4ba75472e1a255235c0cb1fbc013ef87
SHA1

c6c601a62b6dfe454f33b2ca4fd316db150c3d4f
SHA256

1cdda0b206707fea6be5e74add457883abd7c35f238260c648d3e07052a0e080
SHA512

432f27aaa673daeb100fdb878f8843238988157a40376a0dfb1986ca90fb78b1c6cb80a28c58dc11d0381b03a79525d2801d79819b65952f981b6f1fe1f9119d
SSDEEP

1536:Ti2cRp71W92kmUTMAHkhAT86hKrow7WzGGGwRA2T0hi2G:TxcD49PmUTMAEhATPTw7W2IA2TyxG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4ba75472e1a255235c0cb1fbc013ef87_JaffaCakes118

Files

4ba75472e1a255235c0cb1fbc013ef87_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.text
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 7KB - Virtual size: 376KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 67KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE