0f7142143f4fc3e197a129a3821db40e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0f7142143f4fc3e197a129a3821db40e_JaffaCakes118
Size

37KB
MD5

0f7142143f4fc3e197a129a3821db40e
SHA1

c61b527ee35b00448dafa3bb7b92fa1752f63aa6
SHA256

1eef28d7806122812513e8dbb6c8d14c74cafeb3f3a92bf7035acd2103cfb82b
SHA512

872f582af74728a12eb2365af4888aed340e7887eb418dd759501c287b330d074ec648ee934fa4e0354e19c46801ce03a78e6acdb9210de50745f3c808b2bf6a
SSDEEP

768:4R207LXNaHkYTa5/dFa6m8h8CHp3qIzIMlD7YGIxmlEF13P:SjxWPa5Ha6m/CHpRflD7YGmB13P

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0f7142143f4fc3e197a129a3821db40e_JaffaCakes118

Files

0f7142143f4fc3e197a129a3821db40e_JaffaCakes118
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.pcode
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 7KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE