39ed7f445b42da440664c5ab89fa38e4_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

39ed7f445b42da440664c5ab89fa38e4_JaffaCakes118
Size

15KB
MD5

39ed7f445b42da440664c5ab89fa38e4
SHA1

78a0c2e6a126812e5d9f3f97daec37707e70f3ad
SHA256

942a8c86ee016278d057a802a70e39bb70fe5976a612c53bf530ebe211013b66
SHA512

d8454c48c8676f44fbab5ffdb9264c1f948fecf7a8b6592f2ef16967c897728a5d4b40b37fdd16653871ccfeb4c876ad54878244ae622b753953db2dcb5d7692
SSDEEP

384:1vSAwEklD4sea/Li6evW+frB90A30HC037Z0Ac0lL0oksmUb1QZFAOO:1vS6I/Li6evW+frB90A30HC037Z0Ac05

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
39ed7f445b42da440664c5ab89fa38e4_JaffaCakes118

Files

39ed7f445b42da440664c5ab89fa38e4_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 649KB - Virtual size: 649KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 179KB - Virtual size: 179KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 3B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 19.3MB - Virtual size: 19.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ