1189c633e383cf4bb289a9e8ab222870_JaffaCakes118 | Triage

Sharing

General

Target

1189c633e383cf4bb289a9e8ab222870_JaffaCakes118
Size

74KB
MD5

1189c633e383cf4bb289a9e8ab222870
SHA1

3cd50a04d56dfa70079c6aeea59353f293d8e08a
SHA256

54f8abc346b8253616b8ce836d5efae7777e3f6640d4bf4b2ae4cde8f5f45475
SHA512

a27e45d69937752f1a95f74667502e5f502a2fe0b7f83b67f427795c6c8cfa9c202a60e7ecae52bdc3922aa43c870a3969d0cfea5920a2580f0293758877e03d
SSDEEP

1536:nHdgjry4ZU3jbKOBnFQZo8bQHk1Uqr9sgq/Uh28nOatn749lfX:nHuju46j1BFQZomF15J0cGok9l

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1189c633e383cf4bb289a9e8ab222870_JaffaCakes118

Files

1189c633e383cf4bb289a9e8ab222870_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.text
Size: 72KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 50KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ