c6ee4042ff5019dd824e0e2b3f0e0eef_JaffaCakes118 | Triage

Sharing

General

Target

c6ee4042ff5019dd824e0e2b3f0e0eef_JaffaCakes118
Size

614KB
MD5

c6ee4042ff5019dd824e0e2b3f0e0eef
SHA1

46a4f9e6aab1edd5a5402d4d88b9cb79bcb4c4e7
SHA256

f3c2791dd6888f86e8caca340c91c57917fb7e098b9c3a0d5d507642e033bf98
SHA512

f57034d8b021c38f4f48a8f0f7b79e023604b8a0f1a017cf6d119b08d7e29c7f8d2a42b63cc180fb39c1e95d8afadfa1c63b1c9dab211baf1be020d20b17f4a2
SSDEEP

12288:SYzchQVZnkmt/70MWugxPJZFpf0c1pHnbdJrs2xnd:d4KV5Hpt8bZHLRCA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c6ee4042ff5019dd824e0e2b3f0e0eef_JaffaCakes118

Files

c6ee4042ff5019dd824e0e2b3f0e0eef_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 396KB - Virtual size: 395KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 174KB - Virtual size: 174KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ