a2b53d46bfb449b15adfa8848c6c6ee8_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a2b53d46bfb449b15adfa8848c6c6ee8_JaffaCakes118
Size

2.1MB
MD5

a2b53d46bfb449b15adfa8848c6c6ee8
SHA1

b866b1ab8e78d8801c8a9c720a090d7aa38482be
SHA256

53218d9be5d7b904a65e35bea1d0576cbf337ca31cc04d0e3e58bb4643ca2b37
SHA512

1f50b74344921e7c5d8d925a9c45e78466efe51b7afc6c6c6501adb760c8b71f95e0afe104166e7849bb3cdacbde3d94724004e22c5d087dd671d8fc97601b83
SSDEEP

24576:0r6XJKY8MGGT6TF0cqwmYHFT96RNGaxVeaf968KFflYfFmtr0X:LEF0fYHFT96RJxVeS9NMf2FWQX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a2b53d46bfb449b15adfa8848c6c6ee8_JaffaCakes118

Files

a2b53d46bfb449b15adfa8848c6c6ee8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

G:\mysql-5.1.33-winbuild\mysql-community-nt-5.1.33-build\storage\myisam\RelWithDebInfo\myisampack.pdb

Sections

.text
Size: 544KB - Virtual size: 540KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 911B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 572B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.mjg
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE