a8ba5087a3a00bc81d8a41dabd833827_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a8ba5087a3a00bc81d8a41dabd833827_JaffaCakes118
Size

468KB
MD5

a8ba5087a3a00bc81d8a41dabd833827
SHA1

373c75bb57a4a2b15b21f1a02a619bfac698fa74
SHA256

c7a85b556b408a762fccaff75e66921509d9c0d44fdba51083f407eb4186d1f4
SHA512

747a22acaed21cd68b0d07639b78d740d77a5d5744e262c5048d812674f95d15ad30cfd921d8a16b795a641a32254612b9f1a029404fa0cf5f32eb0aa2d5b9d3
SSDEEP

12288:bT/GbCH5Ds1M41IDuRBovTAQ2PkiKWy9H4pTH+nTVzYKj86sL8MK5S:feh1IC3ovkKWy9+0pYOGH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a8ba5087a3a00bc81d8a41dabd833827_JaffaCakes118

Files

a8ba5087a3a00bc81d8a41dabd833827_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_ISOLATION
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 83KB - Virtual size: 268KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 39KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 2KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 186KB - Virtual size: 188KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 155KB - Virtual size: 376KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE