4c4027764833d6ba7dba6fd7229ab06b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4c4027764833d6ba7dba6fd7229ab06b_JaffaCakes118
Size

852KB
MD5

4c4027764833d6ba7dba6fd7229ab06b
SHA1

6bd252c00d21008a13081cac56e9de227ecbcea4
SHA256

7dea27d0b166e7ec7ccd6c965af49bd39c68a75652909c33e2dd1cb827f5f19e
SHA512

ac02e4bc1262536fade1c4b4a77a62ee7d2b6c9bf294ad67375c18af740c900c65f19e5f012565d7d2a62a5e71627dab74369223f251555acae762cb08c2a684
SSDEEP

24576:/2D53iEsd0J3fN+TvYjf6hHnC3kpUBwgd06rXt2PZ:/qiZ0xN82YHnCUHW06zCZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4c4027764833d6ba7dba6fd7229ab06b_JaffaCakes118

Files

4c4027764833d6ba7dba6fd7229ab06b_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 38KB - Virtual size: 38KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 812KB - Virtual size: 812KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.VCrypt
Size: 70B - Virtual size: 70B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ