432e447cb330424b84e51618add8d45c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

432e447cb330424b84e51618add8d45c_JaffaCakes118
Size

194KB
MD5

432e447cb330424b84e51618add8d45c
SHA1

73e6be775f921f17f652be72aad3a4424a83c25c
SHA256

3cd288c90334c86a754bfdd38ca950d439aaf5b62bceecbb710c7c3fd3770c50
SHA512

5b26716db22f5fbbc8407933c2e2f6d8351aef0db8667111148d05e8192de57c7163a9ca6ea55a75bb30aa5bfdc82268c688f4ca83e08ed4432329205a0e6cc9
SSDEEP

3072:Qte3fm4mehNUM0a+dbblMGrsNGxWvQlBrmLUS/kNoiBCLayPS:44melaANGxWvQl4LUS4Qw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
432e447cb330424b84e51618add8d45c_JaffaCakes118

Files

432e447cb330424b84e51618add8d45c_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 189KB - Virtual size: 188KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 43KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 69.3MB - Virtual size: 69.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ