7019a5e496061814358f872840a6005c_JaffaCakes118 | Triage

Sharing

General

Target

7019a5e496061814358f872840a6005c_JaffaCakes118
Size

255KB
MD5

7019a5e496061814358f872840a6005c
SHA1

6edfd0073d97d68d65b13a628dcbc72d3de579c4
SHA256

60dc4b76d855d95018b83670a04b37ff5b57abd09b3c26657e928313afcb06cd
SHA512

0b75ced123b8b1d3fdcb5b9cf87e54a5f82df86450c82726458588c0b8a12d5a4486a05c867af30441530603fbf14b8a1f4c05d432a63bdcc037c79683995947
SSDEEP

6144:qife/G4kR7h5uAS/HOVjzuugwl8C6axqEq3nhUMhDJA455O:qQgBklh5udHcuugL8gL33A4XO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7019a5e496061814358f872840a6005c_JaffaCakes118

Files

7019a5e496061814358f872840a6005c_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

CreateObject

Sections

TELOCK0
Size: - Virtual size: 688KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

TELOCK1
Size: 254KB - Virtual size: 256KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

TELOCK2
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE