13eeaf9e430a54f55f1b5fd1f23979c2_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

13eeaf9e430a54f55f1b5fd1f23979c2_JaffaCakes118
Size

440KB
MD5

13eeaf9e430a54f55f1b5fd1f23979c2
SHA1

94654ccf7f3a7ad66261081a31bedbe292b128b2
SHA256

25c1cfe985163e5cfcd413a82d4b03fe1e7bc10209497ec84a5e5e81809161b2
SHA512

9256fc8c625b89adc40d2a2d60dfdf62866674f51f391eaa83d1685f3f760888f7d3e9c49b62239657ca4edde9cc2a74056787b220b475a03b6d025eccbb416f
SSDEEP

12288:b8UF1sFdEPdRdWwcUNidXpEtx3zgc2C0iAWPl:Z5l3kUl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
13eeaf9e430a54f55f1b5fd1f23979c2_JaffaCakes118

Files

13eeaf9e430a54f55f1b5fd1f23979c2_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 424KB - Virtual size: 423KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 111KB - Virtual size: 111KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10.9MB - Virtual size: 10.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ