668b5c470d899fe01ab7441c7bcabcf4_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

668b5c470d899fe01ab7441c7bcabcf4_JaffaCakes118
Size

160KB
MD5

668b5c470d899fe01ab7441c7bcabcf4
SHA1

a9fcf5b0ed33775c55a506cc3f7edfef864567b4
SHA256

c15a6193ed7c4dd2bc802f0fb237f5a94fdb19b12981d3e5d08d1fab3d0dad83
SHA512

5c0b3a80550f8f06d1f09ad778408ef58892807ca1b0ec03a7509c6973f4a083104e254c430c2c73eef89ef2e4b9160b81d0f8c00faecbdc1ba1ca3ae06b2882
SSDEEP

3072:FBqiQ1F7O9tqKh5rv0wKgjvQ5LLYYvcTT3Nv/ouX0h1we9jaH5KI:FG69tqKh1Qg05/YrTd3shzjuZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
668b5c470d899fe01ab7441c7bcabcf4_JaffaCakes118

Files

668b5c470d899fe01ab7441c7bcabcf4_JaffaCakes118
.dll windows:4 windows x86 arch:x86

79b3362178937bf9559741c46bb9e035

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetModuleHandleA
GetProcAddress

Sections

.text
Size: 108KB - Virtual size: 104KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE