17a398ef2fcb6e4903fd68625071ad02_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

17a398ef2fcb6e4903fd68625071ad02_JaffaCakes118
Size

559KB
MD5

17a398ef2fcb6e4903fd68625071ad02
SHA1

27531533e40efa55744c955c65d53650aa16f25a
SHA256

65aef588bb95b2f2c0836fda167b312c75bcb8837b9fb6815d99fbd5f845d8a3
SHA512

92e408c484a54f227d2aaa6ad16c5a0fbe07ebebab187f690aff1bda2f16453758fe7965b1153bc4e5ed2339712a27a20fb416107a8bb42bfd47a6d6b3582673
SSDEEP

12288:zvacO9BYm2cuaBKzUUSWOk7F0aAEgLZ5wZ/ZFF3VrL5Ek:zvar9BYm2NaBKYnfk7Oae4ZFFl/5Ek

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
17a398ef2fcb6e4903fd68625071ad02_JaffaCakes118

Files

17a398ef2fcb6e4903fd68625071ad02_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 556KB - Virtual size: 555KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 51KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 312KB - Virtual size: 311KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ