75bd992a9166bd0d9716ab39124a8012_JaffaCakes118 | Triage

Sharing

General

Target

75bd992a9166bd0d9716ab39124a8012_JaffaCakes118
Size

127KB
MD5

75bd992a9166bd0d9716ab39124a8012
SHA1

c900bf8f1fc5315ce7589d3c88f09110ec2d9660
SHA256

d16f001f374c445c57bd2f908229d98c19c4deba7c1f8c56afdb64375a312879
SHA512

9e8e90e4e0899ccad288ebd1afd0b6c135aaa6ca83b1cde4c43a59ce28cdb16cd72574e7e6861c15489989467b92a4045450c198faf6a12effe3dca5ac709327
SSDEEP

3072:JX/VvZy8cwFhnAEzp/KFN/uX8FqxmW5F8U927fwbB2dSgyk:JXNhy87nAU/K2XKqAW5Fy1Sw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
75bd992a9166bd0d9716ab39124a8012_JaffaCakes118

Files

75bd992a9166bd0d9716ab39124a8012_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.text
Size: 107KB - Virtual size: 240KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 114KB - Virtual size: 652KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 116KB - Virtual size: 424KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 10KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pklav
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE