84202abf292de1433b0ed33576dbce9f_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

84202abf292de1433b0ed33576dbce9f_JaffaCakes118
Size

147KB
MD5

84202abf292de1433b0ed33576dbce9f
SHA1

12a2bfa6c00561b28340037710736aefd14076d1
SHA256

3e58ed075be2cca39515394e616399f8a60c2469cfe3dd1fe6ba42d160ec74f2
SHA512

8032c8e9fcaba4db6c4ca24a68f04acb75ebefcbfaba2aea4c2c76cdf4ab1294455a5adb899d54c00f97379b765716c52c2e5d24cddc849bb0c0bbef7b447a8e
SSDEEP

1536:d8EGoJedNGuE0fAZmUYuQXcaIdQnxufU3dSHadBlHe4oTKV+oUL:BuNi0YZmUYhdkjfAl+4oWM/L

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
84202abf292de1433b0ed33576dbce9f_JaffaCakes118

Files

84202abf292de1433b0ed33576dbce9f_JaffaCakes118
.dll regsvr32 windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
JSOff
JSOn

Sections

n4db
Size: - Virtual size: 168KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

bo
Size: 78KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

n2mjyipe
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE