4169ee85761b8249842e4ac3600643fa_JaffaCakes118 | Triage

Sharing

General

Target

4169ee85761b8249842e4ac3600643fa_JaffaCakes118
Size

109KB
MD5

4169ee85761b8249842e4ac3600643fa
SHA1

0aea5c6d7cf6bea1181e77005f888ab7f61fbfb0
SHA256

e9d1c4f94282311d558015795d18dde7e856ca07005ea1656ce84bd2132f8f9e
SHA512

05fc5046e7c8af79225f9e750cb382a0df98bead92035139493cc4f2d714cc93d7630e0e26a571d1715c6ba7d1b0fbdb0ef27fb5c2c739c7e4a15c36cba08c36
SSDEEP

3072:XacDjPc86VTzWbdWE2b0ppy6EVd0i9YVVP6vlR:Pjv6VTA8biyDEFVyvz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4169ee85761b8249842e4ac3600643fa_JaffaCakes118

Files

4169ee85761b8249842e4ac3600643fa_JaffaCakes118
.exe windows:5 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 169KB - Virtual size: 169KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 208KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 61KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ