99c789b35b4dfe58c815011e7035b3a6_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

99c789b35b4dfe58c815011e7035b3a6_JaffaCakes118
Size

1.5MB
MD5

99c789b35b4dfe58c815011e7035b3a6
SHA1

1f39bd22b0f38c007addbbdd0a52ca5a60f163ad
SHA256

1f53f6b4f2c3c74ef6a2544a68fc4eec3ec25bc67c4761e7733b244486f5e49b
SHA512

2405397449212e2c2cdab6d6ae741f0fce2226f73cc64e2a558d3503cda3fb0793458e55b1d67d31ca05a94f1030523b34d382db3ab3eeb6c384b8134f6c0772
SSDEEP

24576:ZRutr7f/q0N+kBw9qmoljoXYFDrric/dwVqBthRF32Uo5TeyxP:/I7KhueP0o0DrO2d7Z32Z5Tt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
99c789b35b4dfe58c815011e7035b3a6_JaffaCakes118

Files

99c789b35b4dfe58c815011e7035b3a6_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 979KB - Virtual size: 978KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 219KB - Virtual size: 219KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 30KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 105KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 176KB - Virtual size: 175KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ