391c73fe49316af803965ea5f9d88d2d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

391c73fe49316af803965ea5f9d88d2d_JaffaCakes118
Size

192KB
MD5

391c73fe49316af803965ea5f9d88d2d
SHA1

304f22b8100f93f41da3cc8c7b1e24e7a378233f
SHA256

c8dc27109538b58c2203bfc2214ca0036b65d7a264f82cc4fd0bc390da148fc4
SHA512

81271aabebfcb79ae07fdc05536a51094e6775e409f23ad3ed02e0867d97a58e18480a626873daa2edd87f1a4fc952ff05d7965ca4396053e9733790e157afbe
SSDEEP

3072:yaVGGLV4o+DZMl25pMH6j3I67DgZ6t1x8hcNYBwsMuNyVVA5bbHpB5TY:NVGGLiolIMaL97kZ6tKFFM2tRT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
391c73fe49316af803965ea5f9d88d2d_JaffaCakes118

Files

391c73fe49316af803965ea5f9d88d2d_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 55KB - Virtual size: 54KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 98KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ