9572625d474a1f495d6c71d81e72ae20_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9572625d474a1f495d6c71d81e72ae20_JaffaCakes118
Size

297KB
MD5

9572625d474a1f495d6c71d81e72ae20
SHA1

f9840d74d4ed9643f480ab555675bab219725aa7
SHA256

75f69662e559a092f7cb02bf6f7da7c6ccdab659337459c43f76cf0cec1c59ad
SHA512

a7ef9c3946a6dde40ac6f466a1ee04babdfac841881b5b877daceee3813997ea2f4a377311dfa1d84c9f85527274fde4422dac03d1cb629fab307ee0e33f334c
SSDEEP

6144:uNRCZch8uF3IkGCMwrtm9JYcsIhVr2KEo0gwSqgcWacfvQYjxHLg+lIfJcJQ:+RC62/j5xr2K4gVFnlYL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9572625d474a1f495d6c71d81e72ae20_JaffaCakes118

Files

9572625d474a1f495d6c71d81e72ae20_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 257KB - Virtual size: 257KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE