175547f3ab016480f1c695ea0da7d2b2_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

175547f3ab016480f1c695ea0da7d2b2_JaffaCakes118
Size

1.5MB
MD5

175547f3ab016480f1c695ea0da7d2b2
SHA1

72d6aef6a0397b49a16bb60f771a8a6942922427
SHA256

f6adcce8122daba8e20574b1688dd6b26721e646e48742f75115018ccfc525fe
SHA512

ef4fb478f8da00d236121551bb4a6e22948c6f84d89611be29b6625e2f23a0599cc11a46a52014b3ef0cabffaeb7e81bb7d8c59f235c52679ecf78a9e65ca403
SSDEEP

49152:lrq0R07QQmk2oEdFCxpUVoxD6ugazhPB1o:hq0+7QbSxpUVKgKhPB1o

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
175547f3ab016480f1c695ea0da7d2b2_JaffaCakes118

Files

175547f3ab016480f1c695ea0da7d2b2_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 484KB - Virtual size: 716KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1.0MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

petite
Size: 676B - Virtual size: 676B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ