c29eab20baaebb19540dc2b2e11e50fe_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c29eab20baaebb19540dc2b2e11e50fe_JaffaCakes118
Size

14KB
MD5

c29eab20baaebb19540dc2b2e11e50fe
SHA1

e70dfc4944c09d1deb180227307981453c4f3893
SHA256

84e8e901281c0240a9661dd80be307e112e8da7f12fea6b5008bb61f136332d2
SHA512

2cb9cbfa07349f39a75d6486955f537e2bf7e08350031def5c29e9fad341198eb2ca70fad9c5ae169e7ee0d66b24602da9fe908cf90511da79017058b6eb7545
SSDEEP

384:mTW/W2OGOuApVFuHICqczsVchPXtrRT5wQxjaNyD:OdpVCFqczXv5UNyD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c29eab20baaebb19540dc2b2e11e50fe_JaffaCakes118

Files

c29eab20baaebb19540dc2b2e11e50fe_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

?Dll2Main@@YGHPAUHINSTANCE__@@KPAX@Z

Sections

g:h0
Size: - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

g:h1
Size: 13KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

g:h2
Size: - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE