790750db3aef658618317e7c51e9b851_JaffaCakes118 | Triage

Sharing

General

Target

790750db3aef658618317e7c51e9b851_JaffaCakes118
Size

160KB
MD5

790750db3aef658618317e7c51e9b851
SHA1

59687d065d7fffd312c87203a0186b3d201cd9f1
SHA256

f01ff928c0db8e8e83eedac4fdb67977d646f4e751c0c356f65dd804cf906d5c
SHA512

ec30d7145641c8b29e38c32baeb1883e2619537677fa488cb7fbf285f90e5deb9e77b224a4a58af23b54f9783c5a646cb32533b48e12fa821208d915c650bb51
SSDEEP

3072:Mq9wwoSTUly2S9QgHe55CeKsX4kSa1DdPE1KaH5Ko:3TUly8e2TPE1Ku

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
790750db3aef658618317e7c51e9b851_JaffaCakes118

Files

790750db3aef658618317e7c51e9b851_JaffaCakes118
.dll windows:4 windows x86 arch:x86

79b3362178937bf9559741c46bb9e035

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetModuleHandleA
GetProcAddress

Sections

.text
Size: 108KB - Virtual size: 104KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE