bc90fef47e9ac2b3190851e9d1a5b67d_JaffaCakes118 | Triage

Sharing

General

Target

bc90fef47e9ac2b3190851e9d1a5b67d_JaffaCakes118
Size

125KB
MD5

bc90fef47e9ac2b3190851e9d1a5b67d
SHA1

527d6cc023f019a03317021fd757ca8f52297bea
SHA256

f9740747f25d3e023b3e03cd604843d066f085e1376066bbc4cd9ff26cd3b755
SHA512

3a29194573c00aeba081cec57526314b989fc9b6fe348f2f264fed9181563309c12181229c3a27507c14a9d82f3dfbe787997f3a7e38746b880adaee68293962
SSDEEP

3072:SbYX7F997WA8yxhP3iohlEcZ2+BKt6F29CNiLiL/7EHB:J7ftXPJZI+W6Fs1ibIh

Score

3^/10

Malware Config

Signatures

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
unpack001/543ʼȺ/543ʼȺ.exe
unpack001/543ʼȺ/ml543.dll

Files

bc90fef47e9ac2b3190851e9d1a5b67d_JaffaCakes118
.zip
543ʼȺ/543ʼȺ.exe
.exe windows:6 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

LoadLi
Size: 4KB - Virtual size: 1830.1MB

Size: 116KB - Virtual size: 4B

��
Size: - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
543ʼȺ/Emailб_.txt
543ʼȺ/ml543.dll
.dll regsvr32 windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.Upack
Size: - Virtual size: 340KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 137KB - Virtual size: 168KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
543ʼȺ/reg_Dll.bat
543ʼȺ/smtpConfig.ini
543ʼȺ/ʹ˵.txt
˵_Readme.html
.html