34039f3323c47e34dd670cf6cb1c12bb_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

34039f3323c47e34dd670cf6cb1c12bb_JaffaCakes118
Size

630KB
MD5

34039f3323c47e34dd670cf6cb1c12bb
SHA1

b498d431473f87ac5ec0115dbf506f8093da1a4b
SHA256

16ceb0568fdc5632636fdd189d990b885e0d9afbe0d3a6b46d65c3f617b30752
SHA512

4c4edd7a74b1b7c7aef776221c31965b57baf5d19f13266003f2ae82ee8e7394b636901f26c05fefe990c7ecc74dbdc3be1d6977c0b588e6144bfc4d81e0afd3
SSDEEP

12288:ddn8qOwwL7NknJv0ihwDqVzmIwhKC+Y9Nac:Dn8q4JkJv0+wDqF4hKC+Y9gc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
34039f3323c47e34dd670cf6cb1c12bb_JaffaCakes118

Files

34039f3323c47e34dd670cf6cb1c12bb_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

E:\building\360project\360sd\branches\beta\Build\x86\360rp.pdb

Sections

.text
Size: 343KB - Virtual size: 342KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 55KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 11KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 38KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rol
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE