f828e72ec06e4959de0396e527d3e1d3_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f828e72ec06e4959de0396e527d3e1d3_JaffaCakes118
Size

13.2MB
MD5

f828e72ec06e4959de0396e527d3e1d3
SHA1

b8dc6dc46a79047c1d9e668774fa8c10912a1ba2
SHA256

e67a846afe17d9f5e945ffd65589e9ead0cf8aeb7f2540003cb5b27a6389ef9d
SHA512

5770bf2528da1c9febe9e9af780703546da2d88325df04b9a5c89687d6d0d3dfdce290c215b7624b53950892bb58821133108be62c1fa761664dc6a5a3bd42c9
SSDEEP

393216:0DH7lptVYmfr7yBG/4AEFlZUpGwHMxT1v9pU:0LhpttD7yBG/i2pOT1v

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f828e72ec06e4959de0396e527d3e1d3_JaffaCakes118

Files

f828e72ec06e4959de0396e527d3e1d3_JaffaCakes118
.exe windows:4 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

E:\XXX\MEINE WEBS\_dropier v3\__loader\official_latest_loader\obj\x64\Release\Latest Update v6.24.pdb

Sections

.text
Size: 13.1MB - Virtual size: 13.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ