cfb12c173e7b0ddf70684e96ff22bd38_JaffaCakes118 | Triage

Sharing

General

Target

cfb12c173e7b0ddf70684e96ff22bd38_JaffaCakes118
Size

76KB
MD5

cfb12c173e7b0ddf70684e96ff22bd38
SHA1

2e3108b71a2bef6a97a38d1b04ac49ce7fb8792f
SHA256

fd67b30547e8e4f0e4acebef67c527a36ada56e68ee9b2619ac7c6ae1f23cce6
SHA512

c7908443e666d000af75a777ec661c6a8b6a47a9b627eaf8bc36025d4cb5afbc3b6e90daa1dd94c36058c92350ffdfe161bfae7a22d79a0d0251f1de2b13c17f
SSDEEP

1536:DP7MNSmMcssMpyLzCTZ2cHvup77mvwSClCvz1DhU6:DAgppywvkUklCvz19B

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cfb12c173e7b0ddf70684e96ff22bd38_JaffaCakes118

Files

cfb12c173e7b0ddf70684e96ff22bd38_JaffaCakes118
.dll .js windows:4 windows x86 arch:x86 polyglot

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

ServiceMain

Sections

.text
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ