625f6a64cc60618d1e78d3616be923a9_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

625f6a64cc60618d1e78d3616be923a9_JaffaCakes118
Size

14KB
MD5

625f6a64cc60618d1e78d3616be923a9
SHA1

184dce807caf62d4cfdd92941a5229875e188246
SHA256

1cfe6dffb728fb57c7027f09ce9f5b2545460b0cb460590487df1a903479e9d4
SHA512

091f9442c29f2cb1a9784ac5044c55b1b305c238ec0f688c12fbde5a81eaeb68953876f6b76da306b5a37db34a2256bf8f03969a33a6307f791bddeae68f3658
SSDEEP

192:oEmwjIJcHjwMghYPAhFU36TqKeBhu2wumIUgbVzHoHWL3yBfUAsNoPNFsR+9sNp/:o6jCcDwzoN3Bhu3pwypUAsNmrG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
625f6a64cc60618d1e78d3616be923a9_JaffaCakes118

Files

625f6a64cc60618d1e78d3616be923a9_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 659KB - Virtual size: 659KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 181KB - Virtual size: 180KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 26KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 3B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 19.3MB - Virtual size: 19.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ