0a0dc6d8894abeb7ac3dde465fc931e9_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0a0dc6d8894abeb7ac3dde465fc931e9_JaffaCakes118
Size

627KB
MD5

0a0dc6d8894abeb7ac3dde465fc931e9
SHA1

438e497b36ea750b9122718dbee4fc8b0d2b0751
SHA256

a6d75ca1adb0d1d9c6d975cb6390ee199b125c222e18089e2a1d07b9d69156cf
SHA512

f534bd2b7cd4195d41dc15d0fc08b9835b6b42c7420f45593012d3f3b7bb93b5a62ba15e23adaf198c181edb336722294a4f34379580cb026fc88c87d2ca7926
SSDEEP

12288:mpvWZjoNBy9sSn0SEykRlSHjDb4SIGgZyPmk43XLubXXPqbNNajf:S4or25EykRlSH6y0LuD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0a0dc6d8894abeb7ac3dde465fc931e9_JaffaCakes118

Files

0a0dc6d8894abeb7ac3dde465fc931e9_JaffaCakes118
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.data
Size: 102KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 484KB - Virtual size: 483KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.extrel
Size: 512B - Virtual size: 179B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ