150949fb23b5a570b53028f3876cc499_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

150949fb23b5a570b53028f3876cc499_JaffaCakes118
Size

30KB
MD5

150949fb23b5a570b53028f3876cc499
SHA1

3228b8f423490f5d080b992ea52d099ebd0da9fe
SHA256

44d5b629cc4d39368cef9caaa0451165810bcc925a79a9c7a1a34507f5b1d5c1
SHA512

db546a3c10de74b3473aa02b02a273bbd5ec27be86e1f573a5e5d128324c57762ccdd125d96ef731fa3bfb8dbb1840db2e0152686820a242064c53ece8def8b3
SSDEEP

384:2b+GAq7OQY0+jJ5mNKn1hA12H3E3eK2Zmpy3FVlF4MNWz52WsF1t+UsaLTOFXHI8:SXAOKd1u12H3pfSMNWzQH9+1PBkm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
150949fb23b5a570b53028f3876cc499_JaffaCakes118

Files

150949fb23b5a570b53028f3876cc499_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 110KB - Virtual size: 109KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ