6a1ad45c120e0dbb7be45998f9ba3dd6_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6a1ad45c120e0dbb7be45998f9ba3dd6_JaffaCakes118
Size

227KB
MD5

6a1ad45c120e0dbb7be45998f9ba3dd6
SHA1

3c4fe7973fd6c16a5b8832aa2ede8db3ce7105b8
SHA256

30b378c1802c5260192af6e5960e6487388ac275c993be860dd761200064d31e
SHA512

a6b362dc49c396a70c2e2495ba0abc492c5b0bd59ef3f3beb1fb67b8710f1891bb273fca012f778dd851bdd0df6a21c9b5ec8ab51ae5866535e6766d125bfe97
SSDEEP

6144:d0Gv72MbXgYj8vRXEfx93Or1aTu1nQWgg2pmN/Gb:VTn/Or4TPI2UN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6a1ad45c120e0dbb7be45998f9ba3dd6_JaffaCakes118

Files

6a1ad45c120e0dbb7be45998f9ba3dd6_JaffaCakes118
.dll windows:9 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

SuppS

Sections

.text
Size: 135KB - Virtual size: 135KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 958B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 62KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 11KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ