2a48223a5aa95490022dc0049d6f6017_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2a48223a5aa95490022dc0049d6f6017_JaffaCakes118
Size

18KB
MD5

2a48223a5aa95490022dc0049d6f6017
SHA1

d06ad6f54872e8f814d9c6d463115c927edd9790
SHA256

a5bab4c015bde26d73fca07daa01e815e55e1de297f080cba9368e99a9048c49
SHA512

78203823eed290e7ae3cfe22fb3046430b72612e6defc996c4f3cfd3b4cb39e5a794ed10464d2f1103cf4210214e1cad7fe5200542f4a4c7fb38b749c68b4485
SSDEEP

384:9xD9pum88jNI2U+OQU6ek9+bKxiGBIWwBWTgwW:9x5p5zvkvWwS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2a48223a5aa95490022dc0049d6f6017_JaffaCakes118

Files

2a48223a5aa95490022dc0049d6f6017_JaffaCakes118
.sys windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 42KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

INIT
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ