b35cae77372b386f5a70d6a4e2e935b4_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b35cae77372b386f5a70d6a4e2e935b4_JaffaCakes118
Size

112KB
MD5

b35cae77372b386f5a70d6a4e2e935b4
SHA1

12606caa866e12f9e157a2a727a9f144c72e3095
SHA256

1b000321b27cc7a687f815b532faa8f57cc7706bd99c2c57ffa48ebbc09e203e
SHA512

b97ed753f36e6c4cd200e40e2066020eb4e83a38324f9ac32413fd40577d09327fd6f6dcafa62d2ac1524e343e8aab40822e51a422fd080c24e943423808ef83
SSDEEP

3072:f24LfPP36DI0CX9e9Oo9Rh282ZmF/e8OwPtPG4D:OuX6DI0wmOo9RhQmYCQ4D

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b35cae77372b386f5a70d6a4e2e935b4_JaffaCakes118

Files

b35cae77372b386f5a70d6a4e2e935b4_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Sections

Size: 80KB - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.kolz
Size: 16KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE