d4a4093dcc7dabb6e9d9b57aaa159ac9_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d4a4093dcc7dabb6e9d9b57aaa159ac9_JaffaCakes118
Size

1.1MB
MD5

d4a4093dcc7dabb6e9d9b57aaa159ac9
SHA1

157f7306ff5b4ff9332570d631f7d5ce27df78cd
SHA256

dc050b963c642e86bf74da5e85fbfcb0b3c12bd692808bf8ae12a36f4bcf3c84
SHA512

1c18849340624cd1f5d2bd9207704cf6c7fb82d7d885da9f5af02f1af146b049242dfcfcf41bce94831e9d7c0eb13931f2046b28cf3a88a21f7abff456b9886d
SSDEEP

24576:FFofQDykb6wCihobn3IZCIPrU+k1MeKn1v2nuktSTm:Hykb3CT0ZbPRk1/K1eptE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d4a4093dcc7dabb6e9d9b57aaa159ac9_JaffaCakes118

Files

d4a4093dcc7dabb6e9d9b57aaa159ac9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 45KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 174KB - Virtual size: 2.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 917KB - Virtual size: 920KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE