a30a9a89b87a7f989bf3afc7ac3906a1_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a30a9a89b87a7f989bf3afc7ac3906a1_JaffaCakes118
Size

111KB
MD5

a30a9a89b87a7f989bf3afc7ac3906a1
SHA1

bd5a095c9c0ff5b5047f97d825a058a5a66de974
SHA256

a966a8492aa7fb7eef0f8020bd56923c22fcc34de4033ff39241ceb633bcaf73
SHA512

7a45ea22f82dcb520a9f679d6e75dcbaf14ee642b3ad1f2924f4573a5b5e2ec7b5b098786f654daa6cd8a065293841d5039e7ce889626496f7cb3f7ea651a3d8
SSDEEP

1536:bNa54YcB3jwzZnT/h+eUyyyE4Tr/pP3EFBMngFoXxa/fbx9zdXoClPdGINx2Q3Cd:bw4d3+LwwXx0FWgN/P5XXGWkpFf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a30a9a89b87a7f989bf3afc7ac3906a1_JaffaCakes118

Files

a30a9a89b87a7f989bf3afc7ac3906a1_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.alev0o
Size: 1KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.8e89ub
Size: - Virtual size: 216B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.kqwpr5
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.q0uzak
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 89B - Virtual size: 90B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 120B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 105KB - Virtual size: 108KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE