812d429149dd4d9c626dadce451bd544_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

812d429149dd4d9c626dadce451bd544_JaffaCakes118
Size

521KB
MD5

812d429149dd4d9c626dadce451bd544
SHA1

ce89d7c2395c84a94bf7954cb2e23d2e7652e95f
SHA256

4a08d442b122eeab9323f35bf9fdac45e2df480c1ca556a2a84993f49055cfdf
SHA512

d0276eb164235bf9a4d77ce415c70f8e8792bce9d882e98b065ffb4cb7dd35b12ef640993684c9af40b9792f4e32f826766a5f4944e972e4c40457307889d4c8
SSDEEP

6144:ugsQ5Rp+NhNhNiaWn7FwipYkQfbKRqHFE3fXztc9fCg8CN4yVrTwJA2gjY5OqNa:u0ChNhTW7rbyChOCyyKBUa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
812d429149dd4d9c626dadce451bd544_JaffaCakes118

Files

812d429149dd4d9c626dadce451bd544_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 355KB - Virtual size: 354KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 80KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ