15908a499b2d55f250f28b40fd91743e_JaffaCakes118 | Triage

Sharing

General

Target

15908a499b2d55f250f28b40fd91743e_JaffaCakes118
Size

23KB
MD5

15908a499b2d55f250f28b40fd91743e
SHA1

2daa9354bb19296654e164051e3c136511dd4eeb
SHA256

e4eee69a5c000fee6a08a1fdb029017a16a5177e8558b134e1845e20af4cb436
SHA512

48d2471ae16912832fa7620275d280621d7b4d09902080a56ae52cb78be2529c2954ac6eae773a7f52d77f916754d72cb6d7c9775a0f875a46ab1750cd7cd937
SSDEEP

384:kidD9d6GAfwjeIL8OQRnuq9Gcf6iWaK5MaWKKaK94ySyuENwjuRQMNozuUHALZ/p:xG6ek8OQAq7fLK5Ma8B3NAuKMNouUYB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
15908a499b2d55f250f28b40fd91743e_JaffaCakes118

Files

15908a499b2d55f250f28b40fd91743e_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

EnHookWindow
UnHookWindow
fslj423j3423

Sections

CODE
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 304B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 5KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 118B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ