87b1fe938f5a24fd3aeb5158a5fd21bc_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

87b1fe938f5a24fd3aeb5158a5fd21bc_JaffaCakes118
Size

524KB
MD5

87b1fe938f5a24fd3aeb5158a5fd21bc
SHA1

9ea602bd9e7154ece37a53ca9ac36f62d32fb1d9
SHA256

61c1b66000c5295dab89c4aabb634d8dee14619f92455f0cf47e730a3df71fe3
SHA512

98ccbd07b51e392a948a1463a277332521b815245930dd1d51b01f57abcaa098692ca99986fdc1083fc4ca3cbac5f16ec52fa3e757484a4ff2fae5f317334005
SSDEEP

384:NOr5NKZ2ZktoAXUK+B3880X11mK6eKm+3hrruK0Lgz8j0n6d8OE6xf0zbJ6HYY8x:0r5ov+38Zl1mK6el+hrR0L/rqbI/Gt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
87b1fe938f5a24fd3aeb5158a5fd21bc_JaffaCakes118

Files

87b1fe938f5a24fd3aeb5158a5fd21bc_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

EnBHookBWindow
ge4gdcfsd1
ge4gdcfsd2
ge4gdcfsd3
ge4gdcfsd4
ge4gdcfsd5

Sections

CODE
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 160B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 6KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 179B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ