8d43264a12c80d690d9902e2dad276cf_JaffaCakes118 | Triage

Sharing

General

Target

8d43264a12c80d690d9902e2dad276cf_JaffaCakes118
Size

20KB
MD5

8d43264a12c80d690d9902e2dad276cf
SHA1

7887574214f744a12ce4fdd5c620f6410cc10d01
SHA256

4f0a052ce16b716d8267123cb487feb28447ce60457f444af3a7640c3f048977
SHA512

fa60c782a954724462dc711fcb2fff8592dc92e233ff6758bfc6b68041b3c477b88228572d20035b853e772df77b8be38752d03f0437e97f3e34add629a3a24d
SSDEEP

384:fo+FSrSqxWEvUL35NxEanaQIo47i0+wjI5t7iW9tfma2u5iU:BF9qYEvUj5NxfaQIbmFH7Dnjd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8d43264a12c80d690d9902e2dad276cf_JaffaCakes118

Files

8d43264a12c80d690d9902e2dad276cf_JaffaCakes118
.dll windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

cdrom
disable
disablewin
disalt
doubleclick
freezeoff
freezeon
hideclock
hideicons
hidemouse
hidesb
hidest
hidet
keydelay
keyspeed
monitor
nuke
sendk
setwall
setwintext
swapmouse

Sections

CODE
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 228B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 437B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ