0dfaf237383e54a4c28c679b18c59e0f_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0dfaf237383e54a4c28c679b18c59e0f_JaffaCakes118
Size

118KB
MD5

0dfaf237383e54a4c28c679b18c59e0f
SHA1

51b83d89cc98c4552de5e34e8ba414b83d63f2de
SHA256

b0541712174c9c6f3f7c499e270aa459cbb7d969344040149a452a93654c41fb
SHA512

cfdcd253293a0918899fa12f4d002121c82857ab5b902ba113145756c6500e55c97dbb669f3f70aa83a2631def7b5d1a1db02a7b4c912c76177d925fa218871e
SSDEEP

3072:Q4JUn2SWEgxMo2VGSSPAZHtwj80959KyjBvL/UdUgwBRO/nkv+:DWn2SWEgxMXRK9KyjlLDT2/kv+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0dfaf237383e54a4c28c679b18c59e0f_JaffaCakes118

Files

0dfaf237383e54a4c28c679b18c59e0f_JaffaCakes118
.dll windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

DllCanUnloadNow
DllGetClassObject
Entry0
InitEn0

Sections

CODE
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 464B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 93KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ