b6eea40ba4f319c8751cc48c079d2bd8_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

b6eea40ba4f319c8751cc48c079d2bd8_JaffaCakes118
Size

116KB
MD5

b6eea40ba4f319c8751cc48c079d2bd8
SHA1

08e7ffa0d125eee804ac7d4ba0cf74be3248f3d8
SHA256

ccbbb57e65c326bbbe39b99a2771b99e72bc625caba474e98bdf4857a10af501
SHA512

7528192178f4442a4849b8fe403efef183151b1d2ee2c7e4f717bb4ce2aeca61f22f6fa12526fcb7710e8fa0c654d99109057e25d550c39afc22b68cfcebd2b8
SSDEEP

1536:/0v9AzUdFKOpNNzhtVy1vvc4RPUz/YYTVw7vFfKn6sQwcjOdowcw50Dsk9isLMij:ceUvpNNzhtVec4RkKNRYbdF5Q9ih6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b6eea40ba4f319c8751cc48c079d2bd8_JaffaCakes118

Files

b6eea40ba4f319c8751cc48c079d2bd8_JaffaCakes118
.dll regsvr32 windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 10KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sdata
Size: 2KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sdata
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.he77w
Size: 512B - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.he77w
Size: 512B - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 5KB - Virtual size: 168KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 50KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Exports

Exports

Sections

.text Size: 4KB - Virtual size: 4KB

.data Size: 512B - Virtual size: 32KB

.text Size: 10KB - Virtual size: 36KB

.rdata Size: 2KB - Virtual size: 4KB

.rdata Size: 2KB - Virtual size: 4KB

.data Size: 8KB - Virtual size: 20KB

.data Size: 1024B - Virtual size: 16KB

.sdata Size: 2KB - Virtual size: 8KB

.sdata Size: 512B - Virtual size: 8KB

.reloc Size: 512B - Virtual size: 4KB

.reloc Size: 512B - Virtual size: 4KB

.he77w Size: 512B - Virtual size: 28KB

.he77w Size: 512B - Virtual size: 24KB

.data Size: 5KB - Virtual size: 168KB

.idata Size: 8KB - Virtual size: 12KB

.rdata Size: 50KB - Virtual size: 52KB

.rsrc Size: 9KB - Virtual size: 12KB

.aspack Size: 8KB - Virtual size: 8KB

.adata Size: - Virtual size: 4KB

.text
Size: 4KB - Virtual size: 4KB

.data
Size: 512B - Virtual size: 32KB

.text
Size: 10KB - Virtual size: 36KB

.rdata
Size: 2KB - Virtual size: 4KB

.rdata
Size: 2KB - Virtual size: 4KB

.data
Size: 8KB - Virtual size: 20KB

.data
Size: 1024B - Virtual size: 16KB

.sdata
Size: 2KB - Virtual size: 8KB

.sdata
Size: 512B - Virtual size: 8KB

.reloc
Size: 512B - Virtual size: 4KB

.reloc
Size: 512B - Virtual size: 4KB

.he77w
Size: 512B - Virtual size: 28KB

.he77w
Size: 512B - Virtual size: 24KB

.data
Size: 5KB - Virtual size: 168KB

.idata
Size: 8KB - Virtual size: 12KB

.rdata
Size: 50KB - Virtual size: 52KB

.rsrc
Size: 9KB - Virtual size: 12KB

.aspack
Size: 8KB - Virtual size: 8KB

.adata
Size: - Virtual size: 4KB