28d58d740358a7ff6e1fe6a1a5da00df_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

28d58d740358a7ff6e1fe6a1a5da00df_JaffaCakes118
Size

737KB
MD5

28d58d740358a7ff6e1fe6a1a5da00df
SHA1

9edaae8d1879e84b268cfac926503d600cbbd81f
SHA256

cc5d139677b154456d1fb23cd957767a8bfc049b93a9b6766766438c2d30b7f6
SHA512

07351ac72b8f831ad189390954c21193c0993d8980587ab2b8f8c1bc019f9579d6774b2f7dc0a2d127750ddc112df6d282326226561d195c3e05e7d090bb0a8d
SSDEEP

12288:r/vksLWtSNrPi37NzHDA6Y1gbl5d7Ifoz4mrNNpRpzqh+IiAx96:DvksLWtkrPi37NzHDA6Yg5dsfoTzy+cG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
28d58d740358a7ff6e1fe6a1a5da00df_JaffaCakes118

Files

28d58d740358a7ff6e1fe6a1a5da00df_JaffaCakes118
.exe windows:1 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 575KB - Virtual size: 575KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 146KB - Virtual size: 146KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ