86f012ab59649b34e0686aea8e83a476_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

86f012ab59649b34e0686aea8e83a476_JaffaCakes118
Size

264KB
MD5

86f012ab59649b34e0686aea8e83a476
SHA1

aa8c013d37a77cd9753518f3695a764afc937fef
SHA256

54018f9473196f321862149b7acc187087adc89edf4ccd756a26e56f2134f4db
SHA512

a91fe1b8775fd704993931854d715f5b30af34ce14787b430713b3980d89c7c3407fa8b9ae70d3dcccd230c03fcd3c6eb8b0d8150ff4eeaa83b0ea2142ee0b37
SSDEEP

3072:rXt3lcpX0oNKAmXsLF+x7Y5eJl1KFLRCn:r93lo0oNNmXEFloxKFUn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
86f012ab59649b34e0686aea8e83a476_JaffaCakes118

Files

86f012ab59649b34e0686aea8e83a476_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Exports

Exports

Rundll32

Sections

�7PA0
Size: 204KB - Virtual size: 204KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�7PA1
Size: 44KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�7PA2
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE