19017e7857f51bf25f814ee25527dfab_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

19017e7857f51bf25f814ee25527dfab_JaffaCakes118
Size

710KB
MD5

19017e7857f51bf25f814ee25527dfab
SHA1

daab9bc868a31eae861305fb55cb32bc0b480705
SHA256

951a9ebe04a27a30b9319240a80b0138bc09a7456f0bd1008649f92011e8935f
SHA512

0cb3b083dfe0d20e1d57d4edeedbd8ba2f19a39cec528caedb7b1e8300afec73ac51507fdf77e52813c5bf5f9bea803fa6568bc8abf59ba15dd640b03974e9b7
SSDEEP

12288:ecr8D7l9KXYEeDQtEwbyd/Fy2NeQivJDJDcm4uGK2tuq5lcxo4PILokj/:9iJU0DQt6d02HgdImjGLJ5lyo4PILok

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
19017e7857f51bf25f814ee25527dfab_JaffaCakes118

Files

19017e7857f51bf25f814ee25527dfab_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

Size: 21KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 296KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 359KB - Virtual size: 328KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.x01
Size: 314KB - Virtual size: 288KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.yP
Size: 12KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE