a3774a2bce5960b1f29c4b43ff088d61_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a3774a2bce5960b1f29c4b43ff088d61_JaffaCakes118
Size

86KB
MD5

a3774a2bce5960b1f29c4b43ff088d61
SHA1

efb110173015cbb8fc85fe2cc754ab68027a87b2
SHA256

2d5906c589d8cb2976ba9dee26136c4a1cf53225e2b7d8f595af982b2624abb9
SHA512

52ddecd49e7f64f5d2478b412f01f7d7ddbdd2c5d5919e2daefdb17453ffe2af5a6bc6caa48a1bd7638c0950d6fbe4b75a3bb7cb5da841a0a9b4fbbb5c6c04f1
SSDEEP

1536:nxjuRcM8JrZM0ZB9QjbFOPEZQ0xYsz4rbaZo5lXoUn/Bn8xg5iWqUBuBvr3uvH5y:xycRrZM0d8bIwhaszUbt//B8xd9dr3wQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a3774a2bce5960b1f29c4b43ff088d61_JaffaCakes118

Files

a3774a2bce5960b1f29c4b43ff088d61_JaffaCakes118
.dll regsvr32 windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
JumpHookOff
JumpHookOn

Sections

Size: - Virtual size: 176KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 83KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 2KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE