62a01c5ed9795daddfc60bafa8b5340e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

62a01c5ed9795daddfc60bafa8b5340e_JaffaCakes118
Size

50KB
MD5

62a01c5ed9795daddfc60bafa8b5340e
SHA1

67658792ec01c1b5c3d6beb10f971671d618e98c
SHA256

b3681f7c2575ba5cc3c8a7f62f558a7c404c397ed0439761837f4ead8533a449
SHA512

00e399a626d85d2f0a22d052aafee18865a558565b0bfce50b6da9a2459fdcc0c2ad080acd85944a6c6fa5d8dd1266e4e7bd480495dc9404e16fe585e2a7ebf7
SSDEEP

768:53niVqvQXEsjVwshOPtsTsFD7dM9IGPSNOA0gl+dYoE1ZxMbMgufC9rjNd4gsIl:53iVqvQXjd4FLGKNYgllLMbM0h41I

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
62a01c5ed9795daddfc60bafa8b5340e_JaffaCakes118

Files

62a01c5ed9795daddfc60bafa8b5340e_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

Endkeyhook
Setkeyhook

Sections

CODE
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 93B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ