b2876c6c627c87a7fa3bd5bc2ce97ce0_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b2876c6c627c87a7fa3bd5bc2ce97ce0_JaffaCakes118
Size

49KB
MD5

b2876c6c627c87a7fa3bd5bc2ce97ce0
SHA1

e6ab896443e4876487787bd7cf312a9ef8b1ec30
SHA256

32f28c1239753f38176be5c114866bfb4c62542c2b8d32c5562b7e8481e09e7a
SHA512

d4626c600ceab25f70f719145711d78bd423eff0fcd5564af7796b1daf377d189e1873a8cfde1b19fde00311c0ee45e5c834cf705b2dd7a3d0928f9617f191db
SSDEEP

768:mkSpisvuzgdwMG9hl7c1McuEcna99AOWZt/p38H:jSplSbm1aCAOgPMH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b2876c6c627c87a7fa3bd5bc2ce97ce0_JaffaCakes118

Files

b2876c6c627c87a7fa3bd5bc2ce97ce0_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

polmxhat

Sections

.text
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 712B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ