adcc0fe9c57d7c4a4f9aa7777adc9c7e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

adcc0fe9c57d7c4a4f9aa7777adc9c7e_JaffaCakes118
Size

9KB
MD5

adcc0fe9c57d7c4a4f9aa7777adc9c7e
SHA1

09c99d2c3d7d673b2b9cd91c59ff29e734bda8e3
SHA256

f13865d165ca1807941990814a50d896af33237dd92a93570dddad74a09e666f
SHA512

7a261f1cc2d363cbe964bbb0c342b281099a6dca8927f69ea55cbb77074280e7151e2549ffce612229dff0e67c7aa551daf5cc5f76cb0bff82110787632bf542
SSDEEP

96:a/ta+hV61A+qmTfrcXgplkljDfv5SyrgbU/Yo0bNN4OT+G4EIy0iOL1ipE2rzMPJ:a/tJhVTmTfrImlKJwJZT+G448kDM4M

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
adcc0fe9c57d7c4a4f9aa7777adc9c7e_JaffaCakes118

Files

adcc0fe9c57d7c4a4f9aa7777adc9c7e_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

SetDIPSHook
startNow

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SHARD
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 474B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ