3731ec152496d471fa66bcddc5b5ea34_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3731ec152496d471fa66bcddc5b5ea34_JaffaCakes118
Size

866KB
MD5

3731ec152496d471fa66bcddc5b5ea34
SHA1

73b08523511e22cf8ff4f9776bce926431f41060
SHA256

39de1ca57540edd22ffe825480ff75075c57f7e07b7fd1dfdf2f609a4d1929eb
SHA512

2d9a7c83020543295c52449068168ea1c8b19b9607f53462937d58a5111a0fe49314c9c7da92fcf0996521a2649469ee92f3a9ebe19c19d2d58ddfdac0909156
SSDEEP

12288:Vna1qI7c7bdi+bY+unJwlxbYCohIZWnRTmO1Kgh74P:VneqX7Z5BuO3YCohuWRTTyP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3731ec152496d471fa66bcddc5b5ea34_JaffaCakes118

Files

3731ec152496d471fa66bcddc5b5ea34_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

_bss32
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 29KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 227KB - Virtual size: 228KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 180KB - Virtual size: 180KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_esetm
Size: 427KB - Virtual size: 428KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_DATA
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 16B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ