426c86bf3b8e7e3aa23a05c4a52b9725_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

426c86bf3b8e7e3aa23a05c4a52b9725_JaffaCakes118
Size

34KB
MD5

426c86bf3b8e7e3aa23a05c4a52b9725
SHA1

2fa2aa43e6211c9ade4e85ba405d3edf396c83ce
SHA256

7367bea44cde4a2266e668c86f78f8922d7b59677efb6ba7bff583c230ddb035
SHA512

3e1f30bd7ddcce3cc1ae3316f7c9361041d8421e8b8f61aa6e0384f34663c8076b5dbdf9f22dccc95c3429c0be1b472edf9e5b50974bb5d0085d0a729931027c
SSDEEP

768:aFZ/+R5itCnr4fGXmMSXAscVq2kvvyleE:47tCr4fRbd/yAE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
426c86bf3b8e7e3aa23a05c4a52b9725_JaffaCakes118

Files

426c86bf3b8e7e3aa23a05c4a52b9725_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.text
Size: 104KB - Virtual size: 236KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 116KB - Virtual size: 660KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 113KB - Virtual size: 340KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 10KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pklav
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE