692131f44872ff48f520f21d1c663d49_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

692131f44872ff48f520f21d1c663d49_JaffaCakes118
Size

357KB
MD5

692131f44872ff48f520f21d1c663d49
SHA1

0e02a87a98ae97c03cf73a78b72fcd06119ef3b8
SHA256

34ddf409305932eaec2075af7bca4400500b65a70f6e6222110eb809499f8a42
SHA512

61ceea6866357483467eb7f5181c0d990603c76984442baf533aaa77885fa31ea2a50f19784ea0d1a05a33cfafc2179aa528948da9ad43af285b052a09a6f149
SSDEEP

6144:GjckxhGotqbSg9RsLvnQAFyhIOKFEjhLzNUTavglyrGtpk2oIPLtpLogTtKTMGdz:SxgJ79RCQRI7Edea2YepqIPLtpLTtKTd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
692131f44872ff48f520f21d1c663d49_JaffaCakes118

Files

692131f44872ff48f520f21d1c663d49_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 312KB - Virtual size: 784KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 21KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE