314e7ef9b1daa93a4d8d2fc1df3a48cd_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

314e7ef9b1daa93a4d8d2fc1df3a48cd_JaffaCakes118
Size

189KB
MD5

314e7ef9b1daa93a4d8d2fc1df3a48cd
SHA1

7f7b6673155c7266d56a6c7e54fffd591283fad5
SHA256

58e8c926db81e9570b9140eebf24de35d3c65c8278a936968ae3fb1b97ac61a8
SHA512

b1f15ba10f3479baa6e0b4707896edf5c15203b9e11bc6bb75a7b0f5546ee9da53f6a2b6b351b36c28d0df830adfa7d6568d49fc73fe52cd172616b8ffc2672f
SSDEEP

3072:oinVnpeklXJrBrU0liQ9TJj2MpFzX3FOJ3OC4r4ViF4iBlXiUiG:oWSkvt8+ThdzX3Fq8r8iF7Bl1/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
314e7ef9b1daa93a4d8d2fc1df3a48cd_JaffaCakes118

Files

314e7ef9b1daa93a4d8d2fc1df3a48cd_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

e:\builds\moz2_slave\rel-m-rel-w32-bld\build\obj-firefox\ipc\app\plugin-container.pdb

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 908B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 500B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.ifc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE