f77d7e7112dd5ec7a2e69b450e8ce1b8_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f77d7e7112dd5ec7a2e69b450e8ce1b8_JaffaCakes118
Size

2.1MB
MD5

f77d7e7112dd5ec7a2e69b450e8ce1b8
SHA1

61d4709b10a52c1553fe83af480f0cb7a106bb8c
SHA256

27936cfe01d1a2710dca7caa7de599f66a0c6476029992db57c086957cb13a6a
SHA512

8c3b029e12b356d0f03a5ca9b5d69d9a9b5e138a73b5447ce38041495b9b112da14c9ea517ec002628ca2d1ef5f1ceca6c4c49cd2a1f2d7ef957dc76e113b100
SSDEEP

24576:SqJWvWL0vbB6BooJdXN0BN2qnw4a+edxoBrLdgg:SqgA0vbEBooJdXN0BMOwLloBrug

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f77d7e7112dd5ec7a2e69b450e8ce1b8_JaffaCakes118

Files

f77d7e7112dd5ec7a2e69b450e8ce1b8_JaffaCakes118
.exe windows:6 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

bckgzm.pdb

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 324B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 74KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ