b228b55b53fd27dfa50429711171e10b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b228b55b53fd27dfa50429711171e10b_JaffaCakes118
Size

280KB
MD5

b228b55b53fd27dfa50429711171e10b
SHA1

2795f87e4f4c5e4c2efddf5c3cdafe1a73f1e227
SHA256

67cd8f970e1229588e8d823ba0d8bba5977c64aecf421eb5a21a33b6f528a7a4
SHA512

b1e93fca628402d16ffde02af9786ee75e00649cd93b7b02b4b5b419d065ba3e20d7dddac19e0cddec90def746c5cbcd12a50227b9ad7e4c2ea76176fe66e1ca
SSDEEP

6144:9R0sYj/cf0rfBYBDkKZWGZFb5P1WrPGV0A:9Rc/cfOfBYGKEGbb5m+x

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b228b55b53fd27dfa50429711171e10b_JaffaCakes118

Files

b228b55b53fd27dfa50429711171e10b_JaffaCakes118
.dll windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

InstallHook
UninstallHook

Sections

CODE
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 216B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 902B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 103B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 516B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ