ff81e12b4b811d6adcdce2f89faf1978_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ff81e12b4b811d6adcdce2f89faf1978_JaffaCakes118
Size

83KB
MD5

ff81e12b4b811d6adcdce2f89faf1978
SHA1

07a8accffd861fc041d1666fc1afc49d8d6064be
SHA256

5fe5648369b09bf3ef290872df698d3efca1bf7f646b75a135d72a6e811ebb22
SHA512

d18681c199d18d7ad79c7e340ef9d4b0cd695339bde03df66c1158612eff3f3fc8de98b22b09dd7b0d7bb8ad693dfd5ca25ed03f1bb3129d4ab27c449222e5f4
SSDEEP

1536:9SG4qtB8pN5DwIs1Cm9EUpgZHClGkWQQ1EfF3mIj22HKEQy:9S2LeN5kIscm9EUpgtEXHMKf3qEQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ff81e12b4b811d6adcdce2f89faf1978_JaffaCakes118

Files

ff81e12b4b811d6adcdce2f89faf1978_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.text
Size: 5KB - Virtual size: 92KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 57KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE