b364f6cda379e9653b9fb7cc83f4624f_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b364f6cda379e9653b9fb7cc83f4624f_JaffaCakes118
Size

46KB
MD5

b364f6cda379e9653b9fb7cc83f4624f
SHA1

5db19c8214e330b5cf32f5a1f987a48493414c98
SHA256

31a25ef8bb53affcec9cf22d327be47894bcb4784a0a176b53a94410ab2e7d80
SHA512

ce1f5ca4e2e46a23c989e4367b258b7b2a41364e36356c90d271368795f305283e4cdb3f08795a167e339b12f55bc2d4dbe877d448411a12a348c277996f36a3
SSDEEP

768:9Kdw2Jp+CrihjfteIQsf0VsKQ50r6ekJhSqUmu3zDmMTMR:9upNobtrTs+KQCZmh/Um2vu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b364f6cda379e9653b9fb7cc83f4624f_JaffaCakes118

Files

b364f6cda379e9653b9fb7cc83f4624f_JaffaCakes118
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.CWEOA
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

��
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 9KB - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ