f53b02dbe87a5db0692a9ae6a331e3a4_JaffaCakes118 | Triage

Sharing

General

Target

f53b02dbe87a5db0692a9ae6a331e3a4_JaffaCakes118
Size

91KB
MD5

f53b02dbe87a5db0692a9ae6a331e3a4
SHA1

73a915a8654b97da23f649ddd945438e3e9cf577
SHA256

97d06dcc6d4aae231a23f7a8d32f5d1d22174fc4195885259f93b54850545f1d
SHA512

f21248567ec5c255649477e0aa50a23151afa7e960a1565aa906cafb0d109da44e1c87d67d628d7f776c027396754e46dd81c74e14f35988d2a2f3e260f8e2f6
SSDEEP

1536:bZYjXfvMKT8kbt2zHgUbTsjANnYiME+IndfAGLH4yP6du3P/cadAQrONt2QayRNg:GXsKTxEskTsj1EFpLYyJXcEAQrq0Qayc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f53b02dbe87a5db0692a9ae6a331e3a4_JaffaCakes118

Files

f53b02dbe87a5db0692a9ae6a331e3a4_JaffaCakes118
.dll regsvr32 windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
JumpHookOff
JumpHookOn

Sections

Size: - Virtual size: 184KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 86KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE