37d0288f3538ec2012dba2c9bb6bec1d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

37d0288f3538ec2012dba2c9bb6bec1d_JaffaCakes118
Size

530KB
MD5

37d0288f3538ec2012dba2c9bb6bec1d
SHA1

bfaf3745ab4dcad761ced463bab738e51efd4a91
SHA256

db65794f7ef7778c60f9a98f5a30e4a820c16d32ab033c3b7751d91e42f9549c
SHA512

5d486b9681d41ef6821d51eee45a961d87debd3c77a13d930fb6e6b266aa031ae29cf9b039507e62f05526780de719f9ab310b6223a92ce80b556ee0865f7aab
SSDEEP

12288:YI4OE5os8YMd52hBdch0AliRvNaxtPR4fJuCIXTTPjB0Y:YIgoJd52BAliRa4fJupTPjB0Y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
37d0288f3538ec2012dba2c9bb6bec1d_JaffaCakes118

Files

37d0288f3538ec2012dba2c9bb6bec1d_JaffaCakes118
.exe windows:5 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 765KB - Virtual size: 764KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 315KB - Virtual size: 315KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 140KB - Virtual size: 151KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ