5f5c8ef99f95da15be6f185cfb6abb01_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5f5c8ef99f95da15be6f185cfb6abb01_JaffaCakes118
Size

306KB
MD5

5f5c8ef99f95da15be6f185cfb6abb01
SHA1

827d9c75cb3b2e81fa60e57a44fd28cbcda64cff
SHA256

4a915d43ddd1c8b03e693316f4ec988ab93694e524fa3835726252996b9aa027
SHA512

395894016dd270603f8c3f8cfe35f554d8d05cae5c0d7e443d7a2f0aa32e8ddd588632861ec46137f14426d0d3c9ed5e67b8c1ad8af3890e8dcb9a322c933694
SSDEEP

6144:figFYiusXYvL4XyKWN6W0SlnHzWVwqHN1EsH1/l8sk2rRHLS40g7cpQdi:fTusXYQVWN6W0wCVwmNyy1/ms7Rv0tpH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5f5c8ef99f95da15be6f185cfb6abb01_JaffaCakes118

Files

5f5c8ef99f95da15be6f185cfb6abb01_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 298KB - Virtual size: 616KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE