535a722dc9f294207c08883a613255bb_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

535a722dc9f294207c08883a613255bb_JaffaCakes118
Size

1.2MB
MD5

535a722dc9f294207c08883a613255bb
SHA1

fd6f764db25b8db411b66f0189c86d167b70d79a
SHA256

65b180c198d67496ae39a20a8d7dcc17ac873a0f6d9830cd02f739628b9d739f
SHA512

a7d7fb85a5fa27a6c17f702347e4da29ce8eee4ec76deef0705a054d7b9e773ad6b16792d6c6982eebc45509674853b2d4cf123822c91c60b13c9a7b5c969404
SSDEEP

24576:K0oxI3DwFWDAZRuGjOewC6DjDi2IRck9akD+ndA/MTHeJxo:foxI6REx/uqk+dVT+bo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
535a722dc9f294207c08883a613255bb_JaffaCakes118

Files

535a722dc9f294207c08883a613255bb_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 970KB - Virtual size: 970KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 47KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 188KB - Virtual size: 188KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ