f8f7dc2b7f6eb094870aec40279d3632_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f8f7dc2b7f6eb094870aec40279d3632_JaffaCakes118
Size

620KB
MD5

f8f7dc2b7f6eb094870aec40279d3632
SHA1

424c6b96ad939ff28b1f4698fec466f41de3817f
SHA256

987b13b3653d7020f92c9bc650614899a89006dcf0fae6ff88abf35cb3b6af84
SHA512

c3d9da8f514d58f682e0c42f913124ec4553dd52caf1871fb4ddd75886833f26e4bf76560241eec596b2d9e15c2697d57f4c75a972e6129c29456f6b65c9e507
SSDEEP

12288:APaIjTVYPK5Tg0cIWi+PEVSlJyqnjrV6z1OfPOKQy8uoyST:APaInVYPipcI9+cElJnnjYAI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f8f7dc2b7f6eb094870aec40279d3632_JaffaCakes118

Files

f8f7dc2b7f6eb094870aec40279d3632_JaffaCakes118
.exe windows:6 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 24KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 589KB - Virtual size: 588KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nPack
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE