21e7cacdb2cd9c328f12c3d9bba88178_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

21e7cacdb2cd9c328f12c3d9bba88178_JaffaCakes118
Size

652KB
MD5

21e7cacdb2cd9c328f12c3d9bba88178
SHA1

183c18ca35d0afc39b79dbffa1f364a70f5ae8c3
SHA256

90bbcde3d430d4a60ad71f44820a1f0466d16cce0cfa095977586410a601ee45
SHA512

9b089fcec4de415d2e82008e659e11960acdb4b5799e19e412360c75d57043c8fb09df1ec008658e60b8747483a12a0be6c022209b6f984e444c5c8929a360a3
SSDEEP

12288:WMauRfuw2/7zsfTxgiDigvCqO9XgA4K4ogvLfsnPjJFu:WMEwNbxgigbiZogvQnS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
21e7cacdb2cd9c328f12c3d9bba88178_JaffaCakes118

Files

21e7cacdb2cd9c328f12c3d9bba88178_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.icode
Size: 882B - Virtual size: 356KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.map
Size: - Virtual size: 856.0MB

.tss
Size: - Virtual size: 436KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 627KB - Virtual size: 628KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE