fbc2717f45c35f9dbd1aa6eaac055a07_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fbc2717f45c35f9dbd1aa6eaac055a07_JaffaCakes118
Size

88KB
MD5

fbc2717f45c35f9dbd1aa6eaac055a07
SHA1

2624a0f5e85a06c1cdec0af4ee4b2a0f605af714
SHA256

835e5c3cbc93a8cb961014ca437750cb4e0d669d0f752eb1c70001bf63e6a33b
SHA512

aa35817e36c6681f0f7be8a68909fb490e16af61bae71c3b3bd2c8fb61dfd48823b3bb862842900bfad92982d8396697c5f013e1a9e52e6108cf059d841f24cf
SSDEEP

1536:XiqgXr1xxydvTetVHJWFSlUnSQp/iTbgUs8YEM9zyJz7dc2VpdBvqWMMcRFJUXzC:KXr1ydvMHJ4nSQY0UsDFmx5cidIWMLRF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fbc2717f45c35f9dbd1aa6eaac055a07_JaffaCakes118

Files

fbc2717f45c35f9dbd1aa6eaac055a07_JaffaCakes118
.dll regsvr32 windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
JumpHookOff
JumpHookOn

Sections

9ohqixr
Size: - Virtual size: 176KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

j4daz
Size: 83KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

24pm95
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE