8c1d29f3da888fb651e674fb9f10a44d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8c1d29f3da888fb651e674fb9f10a44d_JaffaCakes118
Size

141KB
MD5

8c1d29f3da888fb651e674fb9f10a44d
SHA1

db71b9b4d537fe49598ccd991fecdf169aa63a4a
SHA256

f644210de3f53ef887a560a79abf861b036b66f1bb69932bc6f1f1d17e01a9c2
SHA512

659af5402fa01aa1ecfaa95b2b1af766f4916df0f83c9e05779f7e7e03f57e508f91b061ce70d7ce7b2c78baf0b0cbc2bbd9f3e612050b2c1b2e76a3ad3f712b
SSDEEP

3072:1K0cUX48d+AI4h8vwZoY0HWhNeRFRQJcsm/Tz9lDtTnwl2O:1ncUIwdVh8vwH0HWSRBsm/Tz9PzO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8c1d29f3da888fb651e674fb9f10a44d_JaffaCakes118

Files

8c1d29f3da888fb651e674fb9f10a44d_JaffaCakes118
.dll windows:4 windows x86 arch:x86

b1631f367d0c49197c36a1bc0fcff3a4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

RtlUnwind
GetModuleHandleA

Exports

Exports

febzgucphctarebunspxzq
lzpxtzpiieblvqhjpwod
vwqytavnwuqpsjduglrvx

Sections

.text
Size: 95KB - Virtual size: 94KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ