bd2796518e7f970b54e2686980dfe176_JaffaCakes118 | Triage

Sharing

General

Target

bd2796518e7f970b54e2686980dfe176_JaffaCakes118
Size

306KB
MD5

bd2796518e7f970b54e2686980dfe176
SHA1

af529dd1ba24975102f27eb8b03b8a30c3dc1fdd
SHA256

1fb1013f02c278f317aae1ea6d4da63bb8e1871cbb71ae466f1dd388ee7cbaa3
SHA512

50657a2a7af7be58e3afd8d7454c45e3df2ba29e0d513e142d394fdddf6138c71e7bb78e1e4e00e83a84ee3450bb2777de057cb4fa66f94feb33b0c7e9de6023
SSDEEP

6144:dYV4Yy0r8yoPT9/EccJQzlD8CXVBIOJyjuHFdQ64BLBZkky/x8Fa:dUgyoPp/0QzloCFBRJyYUHvyAa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bd2796518e7f970b54e2686980dfe176_JaffaCakes118

Files

bd2796518e7f970b54e2686980dfe176_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 298KB - Virtual size: 616KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE