68a670957e0d88d2395389ae334c4841_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

68a670957e0d88d2395389ae334c4841_JaffaCakes118
Size

47KB
MD5

68a670957e0d88d2395389ae334c4841
SHA1

7fde77561a2720034de97e49054ae4156d6ee727
SHA256

58e65b37e34a02e55c42c91e7576035b3b3a069f5780fda12cf11aedd0d785a4
SHA512

73eaee09dde7335d36b0ca95101a90075554cd00fef8ecc24239f6a25881f4366b629d08dc3fbf8ec414dcd45b6ec2c1ae97fe7bd1b85f0a2031cb361a776a45
SSDEEP

768:US7MqklszDVjD95NrX9Hm/gy+I2OVCBF05KeKwqGaLXa:z7MqklsXTZHlykF2qXa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
68a670957e0d88d2395389ae334c4841_JaffaCakes118

Files

68a670957e0d88d2395389ae334c4841_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 2KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ