834e90bc6343d62d9bb7ca4403d49707_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

834e90bc6343d62d9bb7ca4403d49707_JaffaCakes118
Size

124KB
MD5

834e90bc6343d62d9bb7ca4403d49707
SHA1

37056d9eee1f8dc50bd85c46d12424aaa0808004
SHA256

ed8402b700e457625814c45ada05528d3f4ac701b07e947c92bb6317e822d699
SHA512

0276cef75647541909f50ebb4c2de81ff994f08286f32ddffc952899b37a7752af0e83ce07adc2296d231ef07d1edbced042886d8bb1067736c81c79a8047265
SSDEEP

768:ZDpRSpXu3ndBJHQSmMLU0b7XYbiKNrC3g1ManHByohxYzg7Ge:ht3dQZMLU+jKVWLohja

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
834e90bc6343d62d9bb7ca4403d49707_JaffaCakes118

Files

834e90bc6343d62d9bb7ca4403d49707_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.text
Size: 59KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 67KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sdata
Size: 37KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

uxfyt
Size: - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ