212cae3d4a238d3c1c8334181d1283c8_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

212cae3d4a238d3c1c8334181d1283c8_JaffaCakes118
Size

123KB
MD5

212cae3d4a238d3c1c8334181d1283c8
SHA1

ebd16b4ba4da8322035cea854b0559c8cec6054d
SHA256

86189433cc8451c24876cf34b0e439e5fc2eb84ac46f1e5a3a4d33ba66fcc204
SHA512

75f99dd65b021f943dface1d974ed081a6e355548f9ad579080dc205cd76ee043dfd3b57e218a0817acb82e998a0f04bcd5ce453ed8b2d30159049c31de96d1e
SSDEEP

3072:oBiB4Z/XWDEHHRZrTQdY4STs51YukMidG4t:QZxXmCidZS4kVz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
212cae3d4a238d3c1c8334181d1283c8_JaffaCakes118

Files

212cae3d4a238d3c1c8334181d1283c8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_ISOLATION
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 113KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 1KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ