3d4229414af9d3b8c99f331856d9ad2e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3d4229414af9d3b8c99f331856d9ad2e_JaffaCakes118
Size

116KB
MD5

3d4229414af9d3b8c99f331856d9ad2e
SHA1

0bd3934464a77654c89a731f2dd5deb7034d6767
SHA256

fe13cb32afcaf584f989836267c08ed71882b9f773791c700651d1e58a02d7e8
SHA512

2a8a8d4af716921f74919ad635041639b7d0ff641e7c71354876932cf99e00577d145755158cfa24d1433a2de7638b16bfda09063f70cd7a50953226c55c82b9
SSDEEP

1536:mlJy0tUPpgm+86UjjFFIBTUJiLTjyOmPV+zbLfPzKqR9H:EQ0t4/bZFJiLT2PV+zbLfPzKG9H

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3d4229414af9d3b8c99f331856d9ad2e_JaffaCakes118

Files

3d4229414af9d3b8c99f331856d9ad2e_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.MPRESS1
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MPRESS2
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE