ff4da5f5813b57daf1929c961f6130b9_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ff4da5f5813b57daf1929c961f6130b9_JaffaCakes118
Size

141KB
MD5

ff4da5f5813b57daf1929c961f6130b9
SHA1

d7f7d134cfa8497ab5729891bdde4f2e30c48329
SHA256

919f62ce2c27c0fc5ef84f9b5ffa02cbc426fa4aa0ad3f8bb0a895fe2e8f1943
SHA512

da51072f5f9ee6dd6f5cb68637b41f38d819cd3beceeb9808ec88f0231da02401e37b04e2f724d237533786c7472eace5038b42056da4c19f8902a006fa0b2db
SSDEEP

3072:3Mq3qCEqUTIzWodffH/oDYmKqdIkyygR7Lxnf4PsNi:8q3q9bT1oxPwEmDdO3t40k

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ff4da5f5813b57daf1929c961f6130b9_JaffaCakes118

Files

ff4da5f5813b57daf1929c961f6130b9_JaffaCakes118
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.petite
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE