e103728451c2268ffa725a2f31cf2e04_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e103728451c2268ffa725a2f31cf2e04_JaffaCakes118
Size

1.0MB
MD5

e103728451c2268ffa725a2f31cf2e04
SHA1

2dbdf30e94ef6c780fd275a7bc338e585351387f
SHA256

858e0bb3051656fdcd050d2b7d719aa76a7396f906b4c7839cc7f94580a94af4
SHA512

9924fdd8df342d7f3ccf78eed81f6c8d4a44035e28d0c077e875d3630a1cd3d900c8e137d86566246164a1546246ee0b60d1a8c6cb57e71a1b07a5c6ebbccd4f
SSDEEP

24576:Z0Jt1Ho6jmiJhZqKmkpw/2Lb+8mbs59eAjZK9v6HttmWt:OJt17jmMhpvw/bTs59ZEV2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e103728451c2268ffa725a2f31cf2e04_JaffaCakes118

Files

e103728451c2268ffa725a2f31cf2e04_JaffaCakes118
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

Size: 32KB - Virtual size: 156KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 688B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

WinLicen
Size: 1001KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE