af16fd058b96f4e405cb091a7846f2b9_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

af16fd058b96f4e405cb091a7846f2b9_JaffaCakes118
Size

37KB
MD5

af16fd058b96f4e405cb091a7846f2b9
SHA1

c10296c40a6f51ed8bf523347803be90fc559098
SHA256

d569d1ab78ff3c36954a27797ef88cb074f23828956ffffa669d88360a7cfef4
SHA512

8be3e02ecda12e33ded37e029f391f8d2437b1f7c8ebfbabb6a7509cdd322a1f0979bebc44b02fe37dd7ac4bb47001af587da74f610c369b3e99f5b21a4e352b
SSDEEP

768:qkh2Fvjmf9g/F5XJbeVHFUUXNw2vff0YYo0r:thaM9gFeVHeUXGaffY/r

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
af16fd058b96f4e405cb091a7846f2b9_JaffaCakes118

Files

af16fd058b96f4e405cb091a7846f2b9_JaffaCakes118
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rdata
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.pdata
Size: 7KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE