a430aa06baaeddafeaa93177c89710b4_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a430aa06baaeddafeaa93177c89710b4_JaffaCakes118
Size

83KB
MD5

a430aa06baaeddafeaa93177c89710b4
SHA1

20cf4a1840c9c00670fa1f1c1edd4bbb4f6e186b
SHA256

43ea3f698b768b9f55caa72a9deabc75f6dded0afb1a92c1a2bd973e66569547
SHA512

305169c5e355de8198f74d74fce20f87662f308fb601c297e23f14af8c597384d82741c1c9d01cdadfa5c3e9e7cf7f8c5d6113f5af055d8608e3ad0f27764efb
SSDEEP

1536:Lsiylc/qm6lU+1+VncUjq9TOqIVOz6xSDOLpY0B002b1ImqhUrOq11VCKAfT/:glV5UmsmlOqIPxVYIzEImQUySaKAfT/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a430aa06baaeddafeaa93177c89710b4_JaffaCakes118

Files

a430aa06baaeddafeaa93177c89710b4_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

Size: 208KB - Virtual size: 604KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 52KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 736KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

fgkbpwzm
Size: 560KB - Virtual size: 560KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

zoarrybs
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

zoarrybs
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE