a01dce159671c3de67ed3255abbc7303_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a01dce159671c3de67ed3255abbc7303_JaffaCakes118
Size

795KB
MD5

a01dce159671c3de67ed3255abbc7303
SHA1

55273496d3aa2240de3b2794b2efb283e0dff50d
SHA256

148ef2e3ac58791eb45d6425bb0ad96135cfbf9709d88652e4be3c5f075f7a85
SHA512

da2a4967e311752cbd78fb4c4b5d5eaf0679a3e39e88a036dc9d3868b60e2c636a7723f6c746e89708e56eb2fab95c5f3436a0fa02f273d90778a6f7e02fc439
SSDEEP

24576:7fPi1dJU43I98U7nYYJ2tHhAWSANLHgZpJEML0+eybde:7/4MnYYJ2ZhnSGLHkJEMAlybA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a01dce159671c3de67ed3255abbc7303_JaffaCakes118

Files

a01dce159671c3de67ed3255abbc7303_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

dw20.pdb

Sections

.text
Size: 401KB - Virtual size: 401KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 196KB - Virtual size: 346KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.cdata
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.gda
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE