a2dca42b8dc75e6afbf8cd9e00d12166_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a2dca42b8dc75e6afbf8cd9e00d12166_JaffaCakes118
Size

23KB
MD5

a2dca42b8dc75e6afbf8cd9e00d12166
SHA1

9d6021f370c7a321bcc272f4d83fc6234f991b8b
SHA256

23dd91a8e398579127d24414bb48218f73a6969330d9497171685be652fa6725
SHA512

acdb0f104ef3940b0dd32303bdf1d4df41cbf7f3ff7881f7ec1cc0ffae835493af27b4f90f1ee2f5be3845c2e3cb7aac986ec68e294ec426c9144047ed6de892
SSDEEP

384:PZZhsEcRMidds7GHKjwJuKmZ+uNiHQJWknMKF9W9SIAUlO4OHVO4tubOM3yqbCn:qEE/K3kWiHkSSIAUlGtuPo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a2dca42b8dc75e6afbf8cd9e00d12166_JaffaCakes118

Files

a2dca42b8dc75e6afbf8cd9e00d12166_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_WDM_DRIVER
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.masm
Size: 17KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.share
Size: 1024B - Virtual size: 864B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ