a689907a9725d0691a4ac126cbf48966_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a689907a9725d0691a4ac126cbf48966_JaffaCakes118
Size

138KB
MD5

a689907a9725d0691a4ac126cbf48966
SHA1

86bd446275f6b250f24777b5a6fb908a249d8067
SHA256

12fcf77158a7838945a938867b47f89c8232e9ea42ba6dfe8111ecd7aca95154
SHA512

5d636153c8e2c8403a149c4f34201fff81abc50a0936ad5e4f642ab98e01741efb98c66b1497cbc4d05e097c67ffe9c56424559442b4cbeec88120b735551c9b
SSDEEP

1536:q+t+2OgPt8ICmQK9eSUUXNXWWPUix2qd7owSEq41+ycPpE3waAgcTgFQhICDrioY:q+t+TgPKCxpqW8O8wJYpowOxMImG1f

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a689907a9725d0691a4ac126cbf48966_JaffaCakes118

Files

a689907a9725d0691a4ac126cbf48966_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

DelSer
ServiceMain
Setup

Sections

.nsp0
Size: - Virtual size: 228KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp1
Size: 57KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp2
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vmp0
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 536B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ