2913b0962c6903368d57ecdaab92cf87_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2913b0962c6903368d57ecdaab92cf87_JaffaCakes118
Size

536KB
MD5

2913b0962c6903368d57ecdaab92cf87
SHA1

24e5b22d689659b350b07cd3c83f30cf38fcaec8
SHA256

5accb98d99258fb1186bc416a0874420c317c4b673d0cad6622f690a953c7749
SHA512

dde5381132327ba965c48cc5bb4a729788d2b33e401edcaa2773241ddf48d031ba30ed2d1e29e19844969db018288174b6f2db6b88f13ef817e7c088a23b98db
SSDEEP

12288:1rqeU8M9Xr84ZBvA412AySQt6qetZoJP2j6lCL:1PUj843I41PyCq51

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2913b0962c6903368d57ecdaab92cf87_JaffaCakes118

Files

2913b0962c6903368d57ecdaab92cf87_JaffaCakes118
.exe windows:6 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

vy9slK
Size: 43KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

C0R1jMt
Size: 1KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

sk
Size: 397KB - Virtual size: 396KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Wy
Size: 94KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE