21b10377c0f05cbffe093173ef59b49c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

21b10377c0f05cbffe093173ef59b49c_JaffaCakes118
Size

404KB
MD5

21b10377c0f05cbffe093173ef59b49c
SHA1

bad1674b402fba6b86daab9480a1319aecfd681a
SHA256

2e18908626320d2dbc23586c4757d1d338ab40abe68634cc8547bd0309f1700f
SHA512

1aa8a4f33ee2876cf26f22be4adf1e340932aa8962e7577d115d58064520dbeb10038b699bb2803d184e1bd98c3c758cf8d04c4af6f7c3663b3d1f105a7fe993
SSDEEP

6144:kJHDxHfkuB66AvXzPoBaTB4MI/MY5GRYqzXDj82LhZhnpB+Go087k:A/DAvMEDsCDXDjhLjjBz2k

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
21b10377c0f05cbffe093173ef59b49c_JaffaCakes118

Files

21b10377c0f05cbffe093173ef59b49c_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

BSS
Size: 296KB - Virtual size: 424KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 99KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ