5a01fb04c2d8da48e396883872221063_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5a01fb04c2d8da48e396883872221063_JaffaCakes118
Size

5KB
MD5

5a01fb04c2d8da48e396883872221063
SHA1

4d5d7c1b1ac060a2200c7d87e0c50d043102c643
SHA256

27c6a044aad80ce77bee9c25489f1c2a867f0c7525bcbe7c2dca6f9ef7a271d9
SHA512

08894caf272026b3fb23104b2b61ceb8689eda74d347cb95b9199431e232022e09f10290871e12c16cc5e0ac82788de6384b73ae48665e0088438a645a656d79
SSDEEP

96:HfuzC+uka+0p6PxdYfhuj4OyZ3ARadxF+phSKl8Q9QEJF5/EV:bHkop6PxlYlA8zgS0Qg/EV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5a01fb04c2d8da48e396883872221063_JaffaCakes118

Files

5a01fb04c2d8da48e396883872221063_JaffaCakes118
.exe windows:6 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

Elevated_MpMiniSigStub.pdb

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 408B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 762KB - Virtual size: 762KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 72B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ