41c9dc194a99a80dd6dfcd5c2dc1cc47_JaffaCakes118

General

Target

41c9dc194a99a80dd6dfcd5c2dc1cc47_JaffaCakes118
Size

766KB
MD5

41c9dc194a99a80dd6dfcd5c2dc1cc47
SHA1

607138fd599a15976daf1e55ce38e1b84720eade
SHA256

7b072659db1ae46aa33e327c560b992f0446b4cc03aa02479a99bb834313ebde
SHA512

8dd97b94d17c21369bca5fc9d3fbfc0791be1b819cea446539e73a9e56e1938fbe5b2d190a6d5c8455c584430b366bec86c81880e9a4360e5aa41d7b392ac2b8
SSDEEP

12288:v47yW/rPvcEzXU+pnA5lGe44dlBLgkI/TNcIuR+J/QFwnY+yQUJLl:v4GAPE4UGe44dokITFuO21+y5l

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
41c9dc194a99a80dd6dfcd5c2dc1cc47_JaffaCakes118

Files

41c9dc194a99a80dd6dfcd5c2dc1cc47_JaffaCakes118
.exe windows:6 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\projects\sptd\setup\objfre_wxp_x86\i386\SPTDinst.pdb

Exports

Exports

A0DB34FC6FE35D429A28ADDE5467D4D7

Sections

.text
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 435KB - Virtual size: 436KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.sptd0
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sptd1
Size: 118KB - Virtual size: 118KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

CODEINIT
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

CODESIGN
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.uro
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

Headers

DLL Characteristics

File Characteristics

PDB Paths

Exports

Exports

Sections

.text Size: 14KB - Virtual size: 14KB

.data Size: 435KB - Virtual size: 436KB

.idata Size: 2KB - Virtual size: 2KB

.rsrc Size: 7KB - Virtual size: 6KB

.sptd0 Size: 3KB - Virtual size: 3KB

.sptd1 Size: 118KB - Virtual size: 118KB

CODEINIT Size: 512B - Virtual size: 32B

CODESIGN Size: 4KB - Virtual size: 4KB

.uro Size: 1KB - Virtual size: 4KB

.text
Size: 14KB - Virtual size: 14KB

.data
Size: 435KB - Virtual size: 436KB

.idata
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 7KB - Virtual size: 6KB

.sptd0
Size: 3KB - Virtual size: 3KB

.sptd1
Size: 118KB - Virtual size: 118KB

CODEINIT
Size: 512B - Virtual size: 32B

CODESIGN
Size: 4KB - Virtual size: 4KB

.uro
Size: 1KB - Virtual size: 4KB