e1bd738630e224841f332023e6da8bf2_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e1bd738630e224841f332023e6da8bf2_JaffaCakes118
Size

98KB
MD5

e1bd738630e224841f332023e6da8bf2
SHA1

7c6091d8b80cecef399b87a7084deb765ddb3e30
SHA256

443a4d76def2093434d959a0722126365c1e8a85d219e437b1ad76b748ff4ed2
SHA512

04b5e678978f20626f09d2780a0a5766efc8c8bd2e97dd00d1ed8970dbc5840cdc898a5ef9a437ffcf94b65af1163db5693d637ee0bef8ec39b42a7ab454d788
SSDEEP

1536:utT82G4cgOmIIiO4cuI/WwOCQmOHg4So9GOhr/rUmNQNykN8LERAq1fUc+:Ao293PKqWwOxRSofNQNT8LERASfUc+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e1bd738630e224841f332023e6da8bf2_JaffaCakes118

Files

e1bd738630e224841f332023e6da8bf2_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

gytfredwse
ServiceMain
thisispig

Sections

Size: 66KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�!��
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ