7fe357a9596aef2d83073c24238be554_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7fe357a9596aef2d83073c24238be554_JaffaCakes118
Size

2.5MB
MD5

7fe357a9596aef2d83073c24238be554
SHA1

9b9c6bfc006d4a2a45c301a4f4ede89e5cff7af7
SHA256

153cef9e86cfa2b182e142de95e65e848fba43e21bd6c3adb8524c7c37e8b303
SHA512

0214885c7984ff2bc58c8f1315d5ef5a0e47103adf29301f7cf7659484e5a621dd0e3d27b4be79f980e78ef90bc7d985ae59e4b2214049688030781a923f02b2
SSDEEP

49152:p8PiQBIP/OHDi7N27Nc+6LUTL16L35oRu:p+qmjso8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7fe357a9596aef2d83073c24238be554_JaffaCakes118

Files

7fe357a9596aef2d83073c24238be554_JaffaCakes118
.exe .js windows:5 windows x86 arch:x86 polyglot

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 609KB - Virtual size: 609KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 168KB - Virtual size: 196KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.00cfg
Size: 512B - Virtual size: 4B

Size: - Virtual size:

Size: - Virtual size:

Size: - Virtual size:

Size: - Virtual size:

Size: - Virtual size:

Size: - Virtual size: