9f97370535099362acc4bba75ebc29ce_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9f97370535099362acc4bba75ebc29ce_JaffaCakes118
Size

1.1MB
MD5

9f97370535099362acc4bba75ebc29ce
SHA1

322777e6dc86c19d22138296a8868ec5cfcff378
SHA256

939f7a6a0c038312638fe27abac904c0690852dbf99cf7dbd78ecb3bb962fdcb
SHA512

ac90cf31ae0718660a201bb0bf913f072ad5567b5aab86e804bacf7fcfc0af620a980fbf4400a227b5a5731a16b11e34110c140fe3e68cdeaa3f0d8ea09005a1
SSDEEP

24576:K4sCPDi04opEG+i4BfCww3j1WohiPsbu5uF:VPDwGf4B03j1HIsiEF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9f97370535099362acc4bba75ebc29ce_JaffaCakes118

Files

9f97370535099362acc4bba75ebc29ce_JaffaCakes118
.exe windows:6 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

E:\Visual_Studio_2012\Projects\N_C_V\Release\N_C_V.pdb

Sections

.text
Size: 438KB - Virtual size: 440KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 86KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 527KB - Virtual size: 536KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 60KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE