9515f71265f271a85962a5ff51309035_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9515f71265f271a85962a5ff51309035_JaffaCakes118
Size

637KB
MD5

9515f71265f271a85962a5ff51309035
SHA1

9f7a5dd1bc24995e4861ab0dbacd0b371caadfe8
SHA256

a3709f86f3870f99e97780ec3b2ad2ca33af3894e778aa464cda97903c70c727
SHA512

325d09ef66f6ff1492775905531229f045b6cade969e3f3a8c4b2257287de346833e4b073bec400016a5f119442091caac0a90fae1efbeb9b7ba2c0ca16e4692
SSDEEP

12288:8s0L1ixR3PcO2GLxe0DKPfNqFLMqlCgoRU4+XOvd00S2Nw5xFwlceDv:a8xR3PcOxx7DKt40U4Dzip8cav

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9515f71265f271a85962a5ff51309035_JaffaCakes118

Files

9515f71265f271a85962a5ff51309035_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.textbss
Size: - Virtual size: 389KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 627KB - Virtual size: 628KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 362B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ