defe34705a8351e3b1f0f1458fc2f486_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

defe34705a8351e3b1f0f1458fc2f486_JaffaCakes118
Size

1.1MB
MD5

defe34705a8351e3b1f0f1458fc2f486
SHA1

4da5a0d41d9f703d4a71a63b65bb47e8e2bc7d19
SHA256

18d5b4dc6af0e3e50ea70a27522530f76092d52fc6a138bf87fa79b8d44dfb9c
SHA512

546b0d1eafbeb3061eb1e8ae0762101511fde85e266ba7f464d976c99526d86a8407c149852dcad90152c33d432d13e507e82e88c2410f42ea5192c33045d53b
SSDEEP

24576:SypW9SgLNZaOdcTMuUvxIgx6E9zWq5+r/r4MthVF3CdWkuYQLxvihL7fxxW:St9SgLNZa6xI1E9zbc80Lt4Xfa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
defe34705a8351e3b1f0f1458fc2f486_JaffaCakes118

Files

defe34705a8351e3b1f0f1458fc2f486_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 324KB - Virtual size: 488KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 748KB - Virtual size: 772KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: - Virtual size: 24KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

petite
Size: 676B - Virtual size: 676B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ