4a7ab912f96fe75a64a38144d864b760_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4a7ab912f96fe75a64a38144d864b760_JaffaCakes118
Size

2.5MB
MD5

4a7ab912f96fe75a64a38144d864b760
SHA1

b7f4175e917cf10d4a417e22660e2cc86ce51e8f
SHA256

711ed5247340136eb08f5356237368c5bad71a98cbc9f9559bcbd951312275cb
SHA512

0f2b74a08df87bac0f870d2dc191b2654d61d11d9b1a661e6ceb2e3bdf940d3fc935b720679ce5279dee17549f881b22738cff442800bbea8e7dce2eaed1a2df
SSDEEP

49152:r4yyJl7dczuADOAa2Y+RqkXEqRhK3EWo7yid:rCEvyAap+/EghnWid

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4a7ab912f96fe75a64a38144d864b760_JaffaCakes118

Files

4a7ab912f96fe75a64a38144d864b760_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 54KB - Virtual size: 53KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2.4MB - Virtual size: 2.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ