42e0229a86badf37876d0a1941e6b95b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

42e0229a86badf37876d0a1941e6b95b_JaffaCakes118
Size

1.6MB
MD5

42e0229a86badf37876d0a1941e6b95b
SHA1

e5252658b5c03e2b00a1c52423167f9dad9dbba3
SHA256

6a1b837b6bc86dc952cfc978f365ceffaaa1d37d75d0d48319df9060a3ec6dc5
SHA512

2dca24cd97d0fa053d6f1afa1dcc155da8a7e661f3aa94206f2523b1b7c559fa53a0b45accc6355cdf29410c66e3a4edcecfa4445f5c355a62c57d786a228c35
SSDEEP

24576:tVc7a2la1wNCGjY7OGEZ3PzoMQ+UszVtlR/1GQ0z+jsHNG7TWvl3oLB1GLQG9n13:tVsOKEyG6PEMQ+UpHN8Gol+Jd0FtHRu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
42e0229a86badf37876d0a1941e6b95b_JaffaCakes118

Files

42e0229a86badf37876d0a1941e6b95b_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

Size: - Virtual size: 768KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 322B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 24B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ