ba4d8279900c8772c1774bafd034f46f_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ba4d8279900c8772c1774bafd034f46f_JaffaCakes118
Size

1.1MB
MD5

ba4d8279900c8772c1774bafd034f46f
SHA1

44ca6cd95d01452d76f237e02a4a75da1ccd3a27
SHA256

738fef3ae57843d44d763f76ee5f074d4e9c36ef8841df15fe53ba44527b4e0f
SHA512

279d9153289e34f30414de08003eecfee2125e25fed0fce7cd9f4df597f5629db6475c9a851d89028bea4c673f6ffab1b0eafdbefcd1a5714e8a493793098bdb
SSDEEP

24576:+TleU6QaCCz/iWfG4KhdYM26jpQ3fOLosF5YYHwUSlMPk:WeUlsTiVRjpQ3feFjwL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ba4d8279900c8772c1774bafd034f46f_JaffaCakes118

Files

ba4d8279900c8772c1774bafd034f46f_JaffaCakes118
.dll windows:5 windows x86 arch:x86

7f673f8f644af2bf9aafa41aecb1493b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32 kernel32

FreeEnvironmentStringsW ��

Exports

Exports

_��ӳ��

Sections

.text
Size: 352KB - Virtual size: 784KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SE
Size: 720KB - Virtual size: 720KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SE
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SE
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SE
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

SE
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ