253412b7bec5b47049c5ff0f01e1ec57_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

253412b7bec5b47049c5ff0f01e1ec57_JaffaCakes118
Size

788KB
MD5

253412b7bec5b47049c5ff0f01e1ec57
SHA1

43412ed8f523fa64337ed2b155a49ebcfb880f2c
SHA256

00a03f2c28ac83fcb7c0572834234d69f2ac7e8e5e50eaa960c61b2f06f4e607
SHA512

da3190b0b96be77b253731988c4e5876d461650da32c727d72cdc6173d0b9abbabe852b6554a79aa34b6b3f8870c7b12ccb90b5c8b3e09bbb714ae19d82dce6c
SSDEEP

24576:R7uR3PChx7DqOFBFgD/OIyWJ6SRUwOsozRhd:RU2/B6ag1RU2gR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
253412b7bec5b47049c5ff0f01e1ec57_JaffaCakes118

Files

253412b7bec5b47049c5ff0f01e1ec57_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.textbss
Size: - Virtual size: 588KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 782KB - Virtual size: 784KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 150B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 24B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ