e1d91b73f8e9d2f11b27d92fd21c6a4a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e1d91b73f8e9d2f11b27d92fd21c6a4a_JaffaCakes118
Size

31KB
MD5

e1d91b73f8e9d2f11b27d92fd21c6a4a
SHA1

ba15263ad4b90c975052485270b22100b5827880
SHA256

d5bf0de19ea67acfa40abbf3a2950f134fd7c87013a4fd35f843da23d7c44fa3
SHA512

ecc2aeb285d77b5814ea83d312d6e66d115aa2ee39664beed42ecac170615d2ba1b9cc75ac47350bdf2e7a67e6b141ac45ecf4ab24f1f6bb1a5d847d4dc20ca2
SSDEEP

768:Q+ThI7GCm3D+Qnl6C8NhVkl2CW7oYZ0SqxKsw:Q2hz3D+Qnl6CbW7nGSq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e1d91b73f8e9d2f11b27d92fd21c6a4a_JaffaCakes118

Files

e1d91b73f8e9d2f11b27d92fd21c6a4a_JaffaCakes118
.dll regsvr32 windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
KJHJKFDSA

Sections

CODE
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 185B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ