046f65829c1cfc0e0541be4e0e49116e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

046f65829c1cfc0e0541be4e0e49116e_JaffaCakes118
Size

98KB
MD5

046f65829c1cfc0e0541be4e0e49116e
SHA1

f19fc60856f00c72b5728a54e4c0bf37d3cbd286
SHA256

7f709de27553ebfa9b292b62bc18313479abffb13884c83543ad6892755960b6
SHA512

eefeaba98cb4fca834c6aa1bc37ae2182e5b080af852c06ca77f3872caab67a4e352f71273620eafdaabf1159b8cb53e4aa530d93bcd5ebf9ae54a962e3eceb9
SSDEEP

1536:utN86G4cghmIIrO4cuI/WrOCbrJAg4So9GOhr/rimNQNokN8LElMDYtYMnjqYw:Aa69kSKqWrO/RSo1NQNt8LElMDCbn2L

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
046f65829c1cfc0e0541be4e0e49116e_JaffaCakes118

Files

046f65829c1cfc0e0541be4e0e49116e_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

gytfredwse
ServiceMain
youaredog

Sections

Size: 66KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�!��
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ