03d63f0264695b531f6990d97da2f84e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

03d63f0264695b531f6990d97da2f84e_JaffaCakes118
Size

111KB
MD5

03d63f0264695b531f6990d97da2f84e
SHA1

7e45ec521cf13b48ad3ed5dbc2970a4f8a8b650b
SHA256

0ea502ec9134523e8b5d975c263ffd498dde072ba3bf90ab281940db346ee3a1
SHA512

50e927b77792953fb54d3540750cc48fb7866f1011444be099e2245eeca07f0c3f2f17039325aea971a67fb6eeab60702d1f604cfc9a910412bfc861f90480bc
SSDEEP

3072:Fj9EFKnrQI/fO5pbMYMn+1f1SZbDyGQhEWzshz5:FJHcIIMXnK4ZXyWWzsv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Instalador - Plugin Java.cpl

Files

03d63f0264695b531f6990d97da2f84e_JaffaCakes118
.zip
Instalador - Plugin Java.cpl
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

CPlApplet

Sections

CODE
Size: 129KB - Virtual size: 129KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 2KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 77B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ