89c3fd3d09e8d9051d72e476e59b1334_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

89c3fd3d09e8d9051d72e476e59b1334_JaffaCakes118
Size

147KB
MD5

89c3fd3d09e8d9051d72e476e59b1334
SHA1

9c7833b3fa7258e6bf70d3aac0b72549058c5061
SHA256

7f2051c3c0b53405d254a586e384ed6bc6373a4e5e9006a0ee3302ed3235851c
SHA512

467be1367c722af12f2a1a9dab9480cc8026817d0dcadb5cc51dfcb2b05fc6b885609d2f2d9c8711d4987712d0e14f06a8a9b23585c2f0593d9010b2fd569d68
SSDEEP

1536:nJ5eQsrmoKhqDW0v0VqPN3vWB3QWdbx2EN6CbOE4AfdeqdT2O6ZzE7J:nneQsrLwqD3NcQWdbx2EUE4AVh2V

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
89c3fd3d09e8d9051d72e476e59b1334_JaffaCakes118

Files

89c3fd3d09e8d9051d72e476e59b1334_JaffaCakes118
.dll regsvr32 windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
JSOff
JSOn

Sections

5aecvh
Size: 512B - Virtual size: 168KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

49b9jyg
Size: 78KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rhurb
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE