3a31badce858299bb4528170ec43c3c5_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3a31badce858299bb4528170ec43c3c5_JaffaCakes118
Size

674KB
MD5

3a31badce858299bb4528170ec43c3c5
SHA1

b4ef8c941d2754e117b777013b8b1ce14ee4a07f
SHA256

052bdb96e5ebf64e8d47522e7a27f95c305916b3a90192fd47c6e895a00ff6f1
SHA512

202097275d986efa12aba5f7be014a0953722edcef140a1f0cf5d360a4b443e4651b1c0b8209d15dfc619991101d6b663a4cd0f4019b6f7949950ca9e79636e0
SSDEEP

12288:JAmckHXH7AiXm+hxz56cyIcQRXrInPkT37OwF3Z4mxxsDqVTVOCz:JAz0XbASm+Hf37dQmXLVTzz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3a31badce858299bb4528170ec43c3c5_JaffaCakes118

Files

3a31badce858299bb4528170ec43c3c5_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: - Virtual size: 368KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 358KB - Virtual size: 368KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 314KB - Virtual size: 316KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE