1a894b5af67e59f41bc7d38340f0c49b_JaffaCakes118 | Triage

Sharing

General

Target

1a894b5af67e59f41bc7d38340f0c49b_JaffaCakes118
Size

389KB
MD5

1a894b5af67e59f41bc7d38340f0c49b
SHA1

8fec9849a2bd5978a2374ea3491ee23ac4a1073f
SHA256

c071eb9d91da8e0bba7e58dce66fcf2c06eabee2b5c5f69ded0d55225de5f911
SHA512

a00459c6486a10a0df2c1891bf3d914488822a4b2ff7a517dcc5f96e175672167bec332f44a5e41827964fba445fec102bffa169d3b04e7b3911721375605d03
SSDEEP

6144:B0huMuksLP7yJIVa6j2RUHOjjlzC1x427P1pjZE36PCyXjILVYcGtBe:1Mu1qJITjiHlLw71E36ayXjILaBq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1a894b5af67e59f41bc7d38340f0c49b_JaffaCakes118

Files

1a894b5af67e59f41bc7d38340f0c49b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

F:\V6package\v6 code\IMClient-RV\symbol\Release\AliIM.pdb

Sections

.text
Size: 125KB - Virtual size: 125KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.vsp
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE