3c39f585ba2eb798897d38ab50cebec5_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3c39f585ba2eb798897d38ab50cebec5_JaffaCakes118
Size

522KB
MD5

3c39f585ba2eb798897d38ab50cebec5
SHA1

654d4ff97f8076ada0e7312dbe33f564bb8476bf
SHA256

9964136c7ce4225fdf5c3ccd3d155bc12c0ee8f80c952d7397d33b7cca1f13de
SHA512

64705ce69d7044a6ed8d2bf4a05ea70a1aca8ebd15c2c4025b75cd038301058f86981bfc2af7b40e9aa17df6f50ad7d778ae2e4275add65e5bbbb01544670fc8
SSDEEP

768:nQb2J1kwnSCMcQtC2hkxabGGGGGGGGGGGGGGGGGGGGGGGGGGGGGGGGGGGGGGGGG0:ngEBcbkxA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3c39f585ba2eb798897d38ab50cebec5_JaffaCakes118

Files

3c39f585ba2eb798897d38ab50cebec5_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 228B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 16KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ