11c83d6fbfb14cd787efbd4f2ce4e580_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

11c83d6fbfb14cd787efbd4f2ce4e580_JaffaCakes118
Size

144KB
MD5

11c83d6fbfb14cd787efbd4f2ce4e580
SHA1

19c420b2518f49d04d9416ba7872a83b93d81043
SHA256

89c6802c2259f6c983092b7d35c59ec61830412dfc33c3d9ff7963b9b048ba97
SHA512

2e586cee0360e7d5d6fab1ec4f39d8f35ba5a41a0ab722a0805508f2b41a7df4aac42ae3f80a894fb0ecdeffcbea97aa9d1f06ab28761e5fa518c68c86f93b9f
SSDEEP

1536:iwYZR3GDrtyByZxpWux8R1UppoGvJKA7yaDQfYXM5md1VCaYUtaB:bY/GDrtyBYzVx8R1XGvJnDMQXM5mAf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
11c83d6fbfb14cd787efbd4f2ce4e580_JaffaCakes118

Files

11c83d6fbfb14cd787efbd4f2ce4e580_JaffaCakes118
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.petite
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE