07627278b911a0de51249a0d5783112b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

07627278b911a0de51249a0d5783112b_JaffaCakes118
Size

714KB
MD5

07627278b911a0de51249a0d5783112b
SHA1

467db650938777c59d98d595e54fe93d0af2ec96
SHA256

23d9424f247ee78f4ee8335f60baf35517568e659cb7bea22066de6a1e7bccf2
SHA512

132a973d0e67e8a786f93e3afe26edf8b5fb096a331e11f93dd00071c7c548762dee6e05538dd89a2d6e9d6c03332cf571b2376cb4625f6566554654ab2de932
SSDEEP

12288:yxGz3mDUXfy264kSxOxVOid5BRXjIjbQHW/1a:y23HHkSxOZd3Rg9a

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
07627278b911a0de51249a0d5783112b_JaffaCakes118

Files

07627278b911a0de51249a0d5783112b_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 318KB - Virtual size: 317KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 103KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 242KB - Virtual size: 242KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ