72569b80526ea42a2986a3e359c7317e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

72569b80526ea42a2986a3e359c7317e_JaffaCakes118
Size

532KB
MD5

72569b80526ea42a2986a3e359c7317e
SHA1

da1cd131cee88daeca2f5bc3cc06324aff3c070b
SHA256

61ce0527c60cf516334e5e9d27ad3432361ad33a9b0047d6cf5e23c3d05c35b7
SHA512

0865f35517c18d6d3a13fcda0e4a6e84035b5f768b4a1d7503238baa5ef8cfe51ce1b78aacd90be69b328a5786f93f4c42c671bfa818bb7bf42485dddf984f92
SSDEEP

12288:Q2a0SSYg/vWKy08iv0wmtNC0Xwf/8IYL8Y:Ha3Sv/vWl089tNC0XVLp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
72569b80526ea42a2986a3e359c7317e_JaffaCakes118

Files

72569b80526ea42a2986a3e359c7317e_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

ServiceMain

Sections

CODE
Size: 313KB - Virtual size: 313KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 178KB - Virtual size: 177KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 6KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 70B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ