1311f876c9948610f0b59b44842dbafe_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1311f876c9948610f0b59b44842dbafe_JaffaCakes118
Size

49KB
MD5

1311f876c9948610f0b59b44842dbafe
SHA1

0ec1853658694b65c234184b14ac69f065c0b40c
SHA256

ee8e7b70fe7d64175c3ebd9e0833571731c1636ae83c4fe647588d1579e190dc
SHA512

ebb212fd7d711ee6c3ce2b29de69cae86859a41e585db86e73dd2746714676b81fc666e759cbad66e3a88a1ebdcede161ef284d3f4398c5757270e3f8dedfc99
SSDEEP

768:vFfHK313pE98bHmJsxsIKRoXFnXsJs9YdBiWaQcCIrXFse6KmY1pHJCHz6VMbRvM:dOda98EKXFXwzQ6pJBGJC+INEGC7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1311f876c9948610f0b59b44842dbafe_JaffaCakes118

Files

1311f876c9948610f0b59b44842dbafe_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rdata
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.pdata
Size: 10KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE