b714499a9382377a0f936e38ca57e966_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b714499a9382377a0f936e38ca57e966_JaffaCakes118
Size

8.9MB
MD5

b714499a9382377a0f936e38ca57e966
SHA1

24f83c3af6a3d17ded960eda90817ddd97f1cee9
SHA256

626bb0b8eb07337838324c4d8fa99563dd0944820fd5e6788da95641273c56f5
SHA512

b54a2cfcb65f4cc92dc3ce6768cce24b40d0d6083711304980d81f4e230a01d555e204989a35702d5f6932f738e3695adb35f5d19440d47dc78d6b4258f0cfa2
SSDEEP

196608:1Ksj+u7/aLVpt+eU4EtC7c89cW6VT1DOFRRBLh6j0xH3Z:1N+Vpu4EAYmcrd8Fqj0RZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b714499a9382377a0f936e38ca57e966_JaffaCakes118

Files

b714499a9382377a0f936e38ca57e966_JaffaCakes118
.exe windows:1 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 1024B - Virtual size: 588B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 367KB - Virtual size: 367KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ