69c8f632738fb072eae5e0e3020feb87_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

69c8f632738fb072eae5e0e3020feb87_JaffaCakes118
Size

1.1MB
MD5

69c8f632738fb072eae5e0e3020feb87
SHA1

60c9a843cc10f0928536641de799e004c73979b4
SHA256

333499fecd3a56641dcf779de2c6991ae10865aa1d4698f629f2de4a5597e847
SHA512

69e09d04dfb312c99d5f6cf165bdc7ee811d98f43c4a66110a4636d1f1de7b103623d7675b373096872214fc8b01e29990fb665209064be5c841af2ee9e92e18
SSDEEP

24576:sa8KL1AwszVsr5Pikun/bHVIXumhP5NpFkuk92Y:1861Awom2Dm+mdPhk92Y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
69c8f632738fb072eae5e0e3020feb87_JaffaCakes118

Files

69c8f632738fb072eae5e0e3020feb87_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 16KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 174KB - Virtual size: 2.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 906KB - Virtual size: 912KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE