966a7cad3d4c23b5352b811f960bd932_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

966a7cad3d4c23b5352b811f960bd932_JaffaCakes118
Size

2.6MB
MD5

966a7cad3d4c23b5352b811f960bd932
SHA1

3b795a775c43f0fde8df5c7922eddbef5d6427f8
SHA256

4c11efab515cc68f4cec94546b1f013551508da1fa988ba1a26960553fb15cef
SHA512

0e9f29d662f8257a03c92498e7cdee920f255f5a73eba0c44c84a3702757ff7ce54ae70ea2fdf5c082471885ed899936b560d34564882849efb04cc24c14f2ef
SSDEEP

49152:KBnJXTS0CwoY7xDJs2YgFxusVDiPetddkxT5gG9Qmbe6P3zebA5rOYiZnR:KBn9S0bJsTgFgiD6et+T2F6PDebSivZR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
966a7cad3d4c23b5352b811f960bd932_JaffaCakes118

Files

966a7cad3d4c23b5352b811f960bd932_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 46KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ