7628f5c70fa4afcd219db0f9c88e8924_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7628f5c70fa4afcd219db0f9c88e8924_JaffaCakes118
Size

13KB
MD5

7628f5c70fa4afcd219db0f9c88e8924
SHA1

fdcb55f2bfc253cd15626ab74b441211a8dac179
SHA256

a14e8550a6bfbbce107dbe1550a2a0895c23dd2c9cf9e48f6d791de550a75d77
SHA512

d365b56a1e9a9007c62105d9762a59e40a447c94d2ce73a9027dfdf903d5ef2781252751076277deb885a0edcc6897146df72405ddd8ca281d53f288f57bd53c
SSDEEP

192:ndW0u8/Jh09JWao4Z/hr/5hx6/xGy4xo6c4ViR6ES8DS0q31iyKya:rvLg8OhV36/xGg61LKS0Uiya

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7628f5c70fa4afcd219db0f9c88e8924_JaffaCakes118

Files

7628f5c70fa4afcd219db0f9c88e8924_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 144B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 329B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 748B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 93B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 412B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ