2da92d0bcf856facf8c23d0cedbccd20_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2da92d0bcf856facf8c23d0cedbccd20_JaffaCakes118
Size

527KB
MD5

2da92d0bcf856facf8c23d0cedbccd20
SHA1

f4e8630bf66b0600dc03000cac921dfa67d34ef5
SHA256

9fecd2fa0b2b33be373018cb39cfb132d073f624e4961565580cb3d06fe8c1b1
SHA512

5c47399ca5c684c90987ed21afcaee96e15ca8ea4da43656cf4cfdb122596545a0711b01c7a9c14ccc19e4f78b6f33c2f0781c7ce79f32433d8015cbd7792811
SSDEEP

768:Rqpe4qwt1Icy5HtKvtjTmk0K95hhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhM:ER85Huukq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2da92d0bcf856facf8c23d0cedbccd20_JaffaCakes118

Files

2da92d0bcf856facf8c23d0cedbccd20_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 292B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 16KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ