5ead29fa17dc611c34f80d8da19959bc_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5ead29fa17dc611c34f80d8da19959bc_JaffaCakes118
Size

213KB
MD5

5ead29fa17dc611c34f80d8da19959bc
SHA1

63ab07b2b3be78b4ca86e43b1a83d75abb73ec68
SHA256

38d2b67865ea7a17625d309028f75ea605b27ee42af78921ea5dc2caf465ca27
SHA512

8764d781bea32774c1b641c41866df3cd052d46b8eac3c525648f844e9e950cb3f69b4189e5e0292afd40595393e02cca79f18a4fe2ae89bd0ffa23fc0f45483
SSDEEP

1536:fkfhH7ATjC7kfhH7ATjC7kfhH7ATjC7kfhH7ATjC7kfhH7ATjC7kfhH7ATjC7kft:aH72NH72NH72NH72NH72NH72NH72

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5ead29fa17dc611c34f80d8da19959bc_JaffaCakes118

Files

5ead29fa17dc611c34f80d8da19959bc_JaffaCakes118
.dll regsvr32 windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
kJHJKFDSA

Sections

CODE
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 185B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ