1a7ab67a80403956bf10ca84a8410cb6_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1a7ab67a80403956bf10ca84a8410cb6_JaffaCakes118
Size

211KB
MD5

1a7ab67a80403956bf10ca84a8410cb6
SHA1

d614f1b3adc5c91803abe1e1e9f728bd295a32ad
SHA256

4e977a30a9648c13e874c4fa95a596c6eae65eb83b76bdcad8014df2627ef29d
SHA512

5d054582cb19333e6c508e3054713f4b1b423299e281d45a63763b2af479ddb859dcb3aad45a304bd8586f4d2101fc45d5e01f46989e3acdb5909f6444e029fb
SSDEEP

3072:gw/SMLvaFXyii0jg5vCcs6tS5XXyLXA/928nd86FpSK:FSWaFXyiSBC/di0/p8G

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1a7ab67a80403956bf10ca84a8410cb6_JaffaCakes118

Files

1a7ab67a80403956bf10ca84a8410cb6_JaffaCakes118
.exe windows:5 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 266KB - Virtual size: 265KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 73KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ