698e216f36cc90a8e71f7ab84fa44ecf_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

698e216f36cc90a8e71f7ab84fa44ecf_JaffaCakes118
Size

318KB
MD5

698e216f36cc90a8e71f7ab84fa44ecf
SHA1

3d2ef08cee0ed847983539fe1e4edc0723ba49a3
SHA256

f050abba5a3c4ad61b8599ef2ac131974698e725104300dec14b194a750692fa
SHA512

560ef6573a2bbaa8edf88cbc68dfe291ac1687de97b34b4aa6a7bae952aa04fb085df1f123ac87d27967b5cf9a667808be6527021ce563e3eba48274936d7a7d
SSDEEP

6144:Qz51cNwPLvoqg0R2VhPefm0ToBUOvQxIAVbQCbrT:QV1c2obY7YlvVAVbQCvT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
698e216f36cc90a8e71f7ab84fa44ecf_JaffaCakes118

Files

698e216f36cc90a8e71f7ab84fa44ecf_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 55KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 261KB - Virtual size: 264KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE