f9ea71be4b53e3aac703fac7d8bd2652_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f9ea71be4b53e3aac703fac7d8bd2652_JaffaCakes118
Size

98KB
MD5

f9ea71be4b53e3aac703fac7d8bd2652
SHA1

3617a5db28077bd91a16206c62e86940c55f4f34
SHA256

9039e98ff53d58f1e6bc5719d756491a3428ca355ea06063677c2ceb96f40b1d
SHA512

c4fa203b358dbf46c7e0ca7f979e24485e09385f9d8e0c13ad8fcb8108be601998caff05650d9ceb9bc0f2d33b42c605c169fae592025a6d2ab81802ec6f5b8f
SSDEEP

1536:ut786O4cghmII5O4cuI/WwOCbr7Ag4So9GOhr/r7mNQN5kN8LEPDxn71RaZLVa:Ag61ksKqWwORRSoGNQN48LEAq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f9ea71be4b53e3aac703fac7d8bd2652_JaffaCakes118

Files

f9ea71be4b53e3aac703fac7d8bd2652_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

gytfredwse
ServiceMain
youaredog

Sections

Size: 66KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�!��
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ