78fa84495fbdcdd2c92f5931e873334e_JaffaCakes118 | Triage

Sharing

General

Target

78fa84495fbdcdd2c92f5931e873334e_JaffaCakes118
Size

116KB
MD5

78fa84495fbdcdd2c92f5931e873334e
SHA1

925818471d62a292c237591a8a7fbc54653d405f
SHA256

a4cd4335c8336e96412f369d70696e502bfd6577d401a760a2ee8d5f688231a9
SHA512

530d53e332154c33ec47507730eced1d552c7267f06081cb32305dffa09a8392d66275634c22359f5be797ffdb8519f3b3e38f121e71302e7d126b6eee5dc154
SSDEEP

3072:KvXgoJ9R0lQVbjz7uyKBu37ETqwsfAbLUnM/biM2jE9:epwwvg8UUnMzn8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
78fa84495fbdcdd2c92f5931e873334e_JaffaCakes118

Files

78fa84495fbdcdd2c92f5931e873334e_JaffaCakes118
.dll regsvr32 windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

CODE
Size: 96KB - Virtual size: 95KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 162B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ