3e13035c7b963eef9d161eb4f5bf9d2e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3e13035c7b963eef9d161eb4f5bf9d2e_JaffaCakes118
Size

1.5MB
MD5

3e13035c7b963eef9d161eb4f5bf9d2e
SHA1

7e40c6fcf55fae2ac5d2ed191bf05a79acee0fc5
SHA256

22d2ef4d3a6ecbce22fa7b617218e6914eec2a1802735d296e6b4c950534a2dd
SHA512

151ab891399f80f6aa77c7a0e2c6f15a164a2ee96055690b17e8098b81ea7fb902e34dc0f14f6b968cd4e1cd70d7bfc0605b9f9f536c1227f6b973476821467a
SSDEEP

49152:6m2c50Pg7DOdkd39+6bIGDJXUnEp2222222222222222222222222222222X:6m2c503kJ9+WRDJXFA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3e13035c7b963eef9d161eb4f5bf9d2e_JaffaCakes118

Files

3e13035c7b963eef9d161eb4f5bf9d2e_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 635KB - Virtual size: 634KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 121KB - Virtual size: 121KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 763KB - Virtual size: 763KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ