45e0752c47c7bd97644f38bdfda01616_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

45e0752c47c7bd97644f38bdfda01616_JaffaCakes118
Size

130KB
MD5

45e0752c47c7bd97644f38bdfda01616
SHA1

093a7cc1917fb2d97a8587cdb3b3a1811e91bacf
SHA256

a33f50ecfd1ae65f9f2154a592bbc95309dae5e3b7ba799f01f590afb879ac4d
SHA512

38686a520fcf5fb2a0e9727ff35803d8fafc159ba728ed9d8c07ac7b58bf424b6ea7608f5d1ca2844c949857393e90fbab81ef5d714c964918a9396940f752b3
SSDEEP

3072:KTdjOBrfyKhFaOfEAulfKpg/LvuE+0fEkR:KxOUK6OcxZgQLuECU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
45e0752c47c7bd97644f38bdfda01616_JaffaCakes118

Files

45e0752c47c7bd97644f38bdfda01616_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 225KB - Virtual size: 225KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ATL
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 380KB - Virtual size: 380KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ