0840ac9aef08c7852a3a9c7487c1aad1_JaffaCakes118 | Triage

Sharing

General

Target

0840ac9aef08c7852a3a9c7487c1aad1_JaffaCakes118
Size

47KB
MD5

0840ac9aef08c7852a3a9c7487c1aad1
SHA1

5b6cbcc5b6a65f2cde2b8b35a2bdbdefed2595eb
SHA256

ee47fdd998f423767ca1b95318dcc2c1aff385b4238b57b0720169a485ceb544
SHA512

39fffc6b45436efd7004c006612a481e719c995fdfe1760a280417a0b25704823a42fa8c6e6d9ff7e03aa26d141982e752c1ec051a7e1a9ab98e0367344f6e40
SSDEEP

768:2wjVJPqwQKjhm9CJ28ugSEMe9Y2g+6zYO4ywmFuxvJDcHiGt/7D7NdXre2a/P+em:rVJPqwQyE8aVevWsO4yXAVJQCGdbMm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0840ac9aef08c7852a3a9c7487c1aad1_JaffaCakes118

Files

0840ac9aef08c7852a3a9c7487c1aad1_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 38KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ