40bfca3bcbe2746182ca6722785c7605_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

40bfca3bcbe2746182ca6722785c7605_JaffaCakes118
Size

97KB
MD5

40bfca3bcbe2746182ca6722785c7605
SHA1

de2b1f1ef1652a32b471f095fe65620db28a6ce2
SHA256

375a7e4a38f86e9a7d11578adb4443451d57100545a5f51ff73f756a04dd8352
SHA512

3c011751afef3e8e5b94988b7eadb86c5c85aea003bc1b634a05210da220f331f14238d9749e5907af3027bf3b5ae2dec9eb68051b1ab9a9981ec4927d9c5848
SSDEEP

1536:oBPKhlGQg6M+OtD/4hiAK2rrV8G6RAAYsLIgwJ2vZAlsFlwAvmRnR8IWmDTJq1:oBOM1tDkiAl85AAbUgmZY4+faQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
40bfca3bcbe2746182ca6722785c7605_JaffaCakes118

Files

40bfca3bcbe2746182ca6722785c7605_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Exports

Exports

_GetAllocCounters@0

Sections

.text
Size: 103KB - Virtual size: 103KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 16KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.2data
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE