66149aaf0195a6d1b67f5864b2d48018_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

66149aaf0195a6d1b67f5864b2d48018_JaffaCakes118
Size

37KB
MD5

66149aaf0195a6d1b67f5864b2d48018
SHA1

0791769b0a08b12dfc0f8c960dbcc9427891b64c
SHA256

449e2962eb1ac92a0efa4fbe76106acc62afe9e6310d00ef58ba58cde3492a62
SHA512

4cd1343a79350ad7a3315bbc3f78db769242c78179adc6b148ebf15f88f9700ba00b7b520467668025c65924b3e3952bdcdbcc1b6ab8fa9fdee330b2124763b9
SSDEEP

384:j5w4pY12zDIJ0MpyUpXOKSNlyQj/AwHGVDbPyeqpjqLhs79ubS9wQBWDnxib8JjN:jTvkJ0MyA7S7AcG7qiSxOmr92XQzBJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
66149aaf0195a6d1b67f5864b2d48018_JaffaCakes118

Files

66149aaf0195a6d1b67f5864b2d48018_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 10KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ