fc2dfa665fa4fd3f50c0ca31d3205b62_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fc2dfa665fa4fd3f50c0ca31d3205b62_JaffaCakes118
Size

79KB
MD5

fc2dfa665fa4fd3f50c0ca31d3205b62
SHA1

b05f92c743a0b81f6281dc3c4120e949b1b18f89
SHA256

bf8859cbae3973c3ae5f6e6ab607d93a7b0aae19fada9bc135dd85bf25802ce1
SHA512

1ed07a1b149cc07324e5f428b3ced244a340ceb70a2c7b51969aa084de162a2638a902b241d624e990b88f154ad86f14a3ae79996190e37e16bfed6913b44e69
SSDEEP

1536:1SikXC7WNjQPY8Mosll/EYFd+dQ3D5aiJ2/di+MMksUiim4Raj3OB:oiky7xPpMfl/MdyDmddM1qlQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fc2dfa665fa4fd3f50c0ca31d3205b62_JaffaCakes118

Files

fc2dfa665fa4fd3f50c0ca31d3205b62_JaffaCakes118
.dll regsvr32 windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
JSOff
JSOn

Sections

Size: - Virtual size: 164KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 76KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 2KB - Virtual size: 739B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE