b164c3f82670201677a5d426beddcbfc_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b164c3f82670201677a5d426beddcbfc_JaffaCakes118
Size

95KB
MD5

b164c3f82670201677a5d426beddcbfc
SHA1

ad6f324a3054b7eb458785075c8e1db03112b1be
SHA256

5a7e1a829766e6d9e89155ab9d3c2e040ab977f874cf1c2acc1283054c0229cf
SHA512

773a35ed639d50caa3e4d492fd9364b9af2050617552f0478577c438eed609475da3c110bf8cb8365187734239929c039388fe7ada040421f10d840f5bcb4480
SSDEEP

1536:jtp29ocgGZIO6O4cuI/4+qo7mwyg4ToH/Ohr/bUNmh9Ta5LYR+iRI+Dpn:Zp2q4VKq4+q5RTo5+9Ta5LN+R

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b164c3f82670201677a5d426beddcbfc_JaffaCakes118

Files

b164c3f82670201677a5d426beddcbfc_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.oicq
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.hight
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.make
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

movei
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ucsina
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.ssloev
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.come
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ