9af3f3b0c6bd160771ee9e9933398d1b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9af3f3b0c6bd160771ee9e9933398d1b_JaffaCakes118
Size

905KB
MD5

9af3f3b0c6bd160771ee9e9933398d1b
SHA1

585c13bc79fc065a55c2720c831f0acb3ead5e83
SHA256

2db3fe539710e9ea4799c1505d571795f190253df61eac996322d3f70c175aee
SHA512

f2152286e35cb1c34f941c5c0b1cdd6fb6f17824f05595b2db14f6c821ea52096a5b10d4e0bcfa26c0892770ad9faf2291d4fb3d7dec6df882f1f596558ad296
SSDEEP

12288:ViT97/VGhsGvw1K1fKIKvLnBCq75vgXZZ/FXvRDuQTKsewWz:UpqsGvwSftKDb5vgXZZZR5Awg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9af3f3b0c6bd160771ee9e9933398d1b_JaffaCakes118

Files

9af3f3b0c6bd160771ee9e9933398d1b_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 483KB - Virtual size: 483KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 135KB - Virtual size: 134KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 211KB - Virtual size: 211KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 54KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ