8d7801f8beca9d54fecaa2ff0f8cb5b7_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8d7801f8beca9d54fecaa2ff0f8cb5b7_JaffaCakes118
Size

54KB
MD5

8d7801f8beca9d54fecaa2ff0f8cb5b7
SHA1

60f15746e115cf5ff3a2f3ac0a4090c4a5fd19d8
SHA256

5a04bee6217c641e8c265109c7a0c3abc043a41154d959ff5ba59a65a2d0c5de
SHA512

4a4f4e05c59962cb9029fa29f7951f5f8b657431aa1b6548735d3246d43001c21670cd28ba83744e2858d7efe63c3f4f849a31bb4b9738f23affcdc3d7f80033
SSDEEP

768:bJrToKo+kIj8FFgItMYfkxyRKP/aP8BNpPl+4fkiMx7j6ihqS0+UmiDmfVMB80ZR:bJrpVUNMKk0YRPjMF9++qS/UgfVM/sK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8d7801f8beca9d54fecaa2ff0f8cb5b7_JaffaCakes118

Files

8d7801f8beca9d54fecaa2ff0f8cb5b7_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 681KB - Virtual size: 680KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 197KB - Virtual size: 197KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 31KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 3B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22.7MB - Virtual size: 22.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ