a63a0052a8329f8fb3e0e222556cbe77_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a63a0052a8329f8fb3e0e222556cbe77_JaffaCakes118
Size

181KB
MD5

a63a0052a8329f8fb3e0e222556cbe77
SHA1

762eed0432a189ab6580cc99c43533e304846274
SHA256

0a1af954fe663b6826118bb4214a62d681f21217969ea4ea80b2efabd6e1e02e
SHA512

0944550860b57d4d3533a13fed0a34d3f0b71b468e7ee7181142ee35f195591488ab249041e9b17064345ea574e43939ec1b57fabcb3ab2fc0a6aca45dfaec7f
SSDEEP

3072:y3BzO96HM0XU+aDe5UEGJSKz7ccRJMM3Ojl5MR4JObbQnN6EH7Xt740pADtVhOD2:y3Bzun+aCyIK3ccnMxjyaKY607XZ3pev

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a63a0052a8329f8fb3e0e222556cbe77_JaffaCakes118

Files

a63a0052a8329f8fb3e0e222556cbe77_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 10KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 145KB - Virtual size: 368KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE