05a5aaaa3db1caf74634fb41c2b44bd2_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

05a5aaaa3db1caf74634fb41c2b44bd2_JaffaCakes118
Size

229KB
MD5

05a5aaaa3db1caf74634fb41c2b44bd2
SHA1

ec460053722733619b2b65e56dfdfa2a87c5afc5
SHA256

d74541bb87bec9a2d0a4c97b59a1117fd3d4d217c373903db84a19372ce0441e
SHA512

d8c7bbc64b9adf18874c0b7dc292477862fa0ea699db91d3e7cd38f008909e52f8a03c84ec639c0018fbdb9d4762909f434961f917e313239456d4ebb61961ad
SSDEEP

6144:iKSnaGyIWg2JxHfPPyZOc9lEj0T3VopkU4Fp:MaGyIR2Jx/3GU0DVopkUGp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
05a5aaaa3db1caf74634fb41c2b44bd2_JaffaCakes118

Files

05a5aaaa3db1caf74634fb41c2b44bd2_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

Size: 260KB - Virtual size: 868KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 52KB - Virtual size: 106KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 752KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ueyfwreo
Size: 572KB - Virtual size: 572KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

crrrybcd
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

crrrybcd
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE