17b96ad7a6547d2d0637f159a81e77bb_JaffaCakes118 | Triage

Sharing

General

Target

17b96ad7a6547d2d0637f159a81e77bb_JaffaCakes118
Size

22KB
MD5

17b96ad7a6547d2d0637f159a81e77bb
SHA1

b280e378e8063ea50a4c0af0050c5830dfef0742
SHA256

fb204458495290ca328bed33f8380fff30a2281ee35a749c809fbf54366b02bf
SHA512

5ec0e2db574d543de50b0278da63e7e80c98d32dc6d13618409a62e294bfe78815092647b98724baa45f1c82c71e231660a25beb2eec6c30a909ac986c82089f
SSDEEP

384:hPyZNjtU2muoJ/zv0hfpDsQeQquXBBOy06LLjXjGouzxI7kd9tIoP:5yZvKSD+0jOX6L/zl+xI7E9Z

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
17b96ad7a6547d2d0637f159a81e77bb_JaffaCakes118

Files

17b96ad7a6547d2d0637f159a81e77bb_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

EnHookWindow
UnHookWindow
fjlsj4ejfjsv

Sections

CODE
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 160B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 5KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 118B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ