84d792e1e8227a3237b1894a9de1e06d_JaffaCakes118 | Triage

Sharing

General

Target

84d792e1e8227a3237b1894a9de1e06d_JaffaCakes118
Size

194KB
MD5

84d792e1e8227a3237b1894a9de1e06d
SHA1

626b3391ce174b6728b97b425851b47f12fbd2c6
SHA256

88424364697aaaa4472dd33ee95d532aae44f7acb13b9dfcafe937320b93a332
SHA512

678f151954f12edb3b3743b335f3a303a4aff3a934c294047c11e85b74834d737bb517a1075e1019f7c20c5bee35034aec42c51a9a2179f97f54aee4e837fdce
SSDEEP

6144:yHNf6qG4UgWh/j1SD1sZ9flBtfhNqbQMxCQpKIJt:ytfBUg0j15RNqTxpKIJt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
84d792e1e8227a3237b1894a9de1e06d_JaffaCakes118

Files

84d792e1e8227a3237b1894a9de1e06d_JaffaCakes118
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.text
Size: 253KB - Virtual size: 252KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 77KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ