38627862bdd951f7e665adc29dd7c025_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

38627862bdd951f7e665adc29dd7c025_JaffaCakes118
Size

372KB
MD5

38627862bdd951f7e665adc29dd7c025
SHA1

c72fccaa13e051441703db608e4a5d1957f658b1
SHA256

b2eacd4dd1460a05526fac8310df70f0921111d334616e34a8f26533b91ca485
SHA512

e6763a1ddc23cd1cf019a8884609ddc49a483d9954cb23dd7b1b4d01006ce9c47ad5532e6ac162d7f40b952a9504b2e6c0c51e3f0eed872b63d963ef0e08429a
SSDEEP

6144:0ia1V+AT7fJfF7QpNlWOXR7PJMxG2D5j5H+bz3d8v3:Fa1V+ef/aNJ9RMxGT43

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
38627862bdd951f7e665adc29dd7c025_JaffaCakes118

Files

38627862bdd951f7e665adc29dd7c025_JaffaCakes118
.dll windows:45827 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_APPCONTAINER
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

�f��V�
Size: 2017.3MB - Virtual size: 3946.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�?��Y|vB
Size: 1284.0MB - Virtual size: 1858.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

0��-t�/0
Size: 2025.9MB - Virtual size: 3929.9MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

��7p�J�
Size: 1431.0MB - Virtual size: 32.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_WRITE

~lJ��R
Size: 586.1MB - Virtual size: 1616.5MB

IMAGE_SCN_MEM_READ

��M7�R|
Size: 2373.9MB - Virtual size: 3913.3MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

f��ciR=�
Size: 2335.0MB - Virtual size: 2957.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�t3@s�~�
Size: 3171.0MB - Virtual size: 277.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE