24f7bc6eef81a32f620392f8de13ca65_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

24f7bc6eef81a32f620392f8de13ca65_JaffaCakes118
Size

87KB
MD5

24f7bc6eef81a32f620392f8de13ca65
SHA1

555f2f8e1640123a69aea7e7374c2d321908009e
SHA256

3f25be90c7c84ae837e874dbc5fec5f28f3bb087746bd24e3ba11cc7ea130f2a
SHA512

df8446ece1e14ef3a73dcf597543364b07006048912d7f70668f66137d70c5b5ef5b4094b2229d5fb12bbd09cceb4bf7370b8f037350188eb5eacbaa35015dac
SSDEEP

1536:d19lkN8vd05d+uAkaL0wPXDP6W+mvVeMjk88X1PWGeoQpPwmNiW24XdROgG:d19lVnL0wPXDP6W+mvQ6APWP5wmXbVG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
24f7bc6eef81a32f620392f8de13ca65_JaffaCakes118

Files

24f7bc6eef81a32f620392f8de13ca65_JaffaCakes118
.exe windows:5 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 5.9MB - Virtual size: 5.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 241KB - Virtual size: 324KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 200KB - Virtual size: 199KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

text
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE

data
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 736KB - Virtual size: 736KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 42KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ