d68cd820325c03076445b9a15cc7fafb_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d68cd820325c03076445b9a15cc7fafb_JaffaCakes118
Size

560KB
MD5

d68cd820325c03076445b9a15cc7fafb
SHA1

22048e6baf76fe806b21d0e0a481e93e88b87806
SHA256

1bd8008d54a8231f5ec9b9567a051dc66fc02c738da1c854fb49dbb60d720580
SHA512

35f13fc2e8dc27c0ae0b75b413ad2784d70ebfb1904e1d752ff16ae3c707185026a2edd8ffa72b23f722c23360c5698e09c343ac319dfcfb0a75d0f42a2fcf78
SSDEEP

12288:C8OysTGaj3QylOUd2o52+UHCFVolC0yOv3IU1hzxAs6Z7GxvL4LLIT/z:CrZTxjA2d2+FVGfvYGzxTC7Gxv8cz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d68cd820325c03076445b9a15cc7fafb_JaffaCakes118

Files

d68cd820325c03076445b9a15cc7fafb_JaffaCakes118
.dll windows:5 windows x86 arch:x86

8c797522dbef30d479a79c71abaa4f9a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

QueryPerformanceCounter

Sections

��wh
Size: 69KB - Virtual size: 196KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 614B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

��wh
Size: 19B - Virtual size: 664KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

��|g
Size: 488KB - Virtual size: 492KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

��wh
Size: 111B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE