479aa1fd9842dba0dba70f0df57a44a4_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

479aa1fd9842dba0dba70f0df57a44a4_JaffaCakes118
Size

919KB
MD5

479aa1fd9842dba0dba70f0df57a44a4
SHA1

c241d652fc92fca8e223e9b6e5ef75226bfbddf6
SHA256

d48c611596e8c5b64dccc6646d786a21d952ea0ce379f6736e848a67ca6d7cc9
SHA512

985d0d744644db65caedd5120adb04b290e06fa0d2774addfd04cb93c862f50a2d3a59a6d42f79418242c0bd7b1f09e51d7f97b695c90e92b2905c1ceb334449
SSDEEP

24576:O2chXEgYJoRNNTQQ1ldiVTzqiCZ+8Pg5BF:O2c4onl5epzqiCRPg5BF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
479aa1fd9842dba0dba70f0df57a44a4_JaffaCakes118

Files

479aa1fd9842dba0dba70f0df57a44a4_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 172KB - Virtual size: 171KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 369KB - Virtual size: 368KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 364KB - Virtual size: 364KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ