c0debff74214e4ba0dfa2d2722332fa3_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c0debff74214e4ba0dfa2d2722332fa3_JaffaCakes118
Size

92KB
MD5

c0debff74214e4ba0dfa2d2722332fa3
SHA1

c4fb4ca275dde147a89a73e29faf352527de313b
SHA256

6cf78d05e6da2d0bf6010408de9e50f093e81010473f8dcea88429fd95e031b0
SHA512

5f72731a863b2392f9dbacda0bcd4480ace275403c0445f90f95c9cbe29899a10ca156f5fbc8030c1f06605fdfe76b2862d5782aadca1ce9018ce9597c6c6ae0
SSDEEP

1536:DI7Ha1V1kGhzhQ9WJkVeIs7xzr6frzbeD3UkVcSfD:DI7H8VThleqkcPx6Yci

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c0debff74214e4ba0dfa2d2722332fa3_JaffaCakes118

Files

c0debff74214e4ba0dfa2d2722332fa3_JaffaCakes118
.dll windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

DllGetClassObject

Sections

CODE
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ