6445e1231148732d6a277c4f143d8965_JaffaCakes118 | Triage

Sharing

General

Target

6445e1231148732d6a277c4f143d8965_JaffaCakes118
Size

234KB
MD5

6445e1231148732d6a277c4f143d8965
SHA1

7386c0253c93ccb7b0bbc4ba095f4071e34cb8bc
SHA256

368dfd6dba98359957c21a0161d8810a533e4ab908c7c91b0de68ad7cf863e41
SHA512

8317df7bf0921bcf0adf408e4933e8e91304eeecde81bd4b3cdae6d9bb3223061526161e497fb7dfe6ee824718857f8e9f3bcd1ea6c2231b9560a9f501c51c65
SSDEEP

3072:uDCv25bFROoYy6ursrn3ehfDYv9nie07q2I2XekRqKU:uDCvEb3BYyLrsrO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6445e1231148732d6a277c4f143d8965_JaffaCakes118

Files

6445e1231148732d6a277c4f143d8965_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 232KB - Virtual size: 236KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ