a7a109d531b0f0a3baf065b9d7f8433c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a7a109d531b0f0a3baf065b9d7f8433c_JaffaCakes118
Size

93KB
MD5

a7a109d531b0f0a3baf065b9d7f8433c
SHA1

207c35307998bc04f7ab1cc4c3576e0fe4ab68d2
SHA256

49a903baf8d632954681c7176c4b1ca69b005b5a4da6c78bd9e1060c4e4b3cde
SHA512

6e92bf8753dab0931eca9e9b0d151a84e59e260200fb1d7c666bd278a519df2f60d2d2162436148cd06cbed67e44f8be8bce1b8dede106bdaab0af226e852321
SSDEEP

768:tHn7CUoNjrc4xY0+VR6SANdDigzXTI5mU4DWi7jcqqOIwESyW7th+6HC:tH7R8jo4xY0Iqzj0h4D9REwv+MC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a7a109d531b0f0a3baf065b9d7f8433c_JaffaCakes118

Files

a7a109d531b0f0a3baf065b9d7f8433c_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

ServiceMain
ResetLMWH

Sections

.nsp0
Size: - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp1
Size: 42KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nsp2
Size: - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE