a83f1173ed2c0c72bfd5aafd35ce1207_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a83f1173ed2c0c72bfd5aafd35ce1207_JaffaCakes118
Size

3.5MB
MD5

a83f1173ed2c0c72bfd5aafd35ce1207
SHA1

4a3c24a82fc9f4cf6742ad978215101403b307d0
SHA256

9ea63b1081e3f4604a03e2864a951826205e11453aac1db1886c75813d7d3c68
SHA512

cb5991dab7c2814f03a9cb4292480ebce57830a6a1e2e922ddd0339250da3260b2dd40d388d4f1191259ff8df6bc868d10aa7a3db8ec24eb0f3b2f98d4bf109c
SSDEEP

98304:uQsz5AX3G2jmmFS2LyHLdAiImGGV4oXo3NWN1GnlXp2UYD:Od63GymmFr2JAirGGVr434ql5dYD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a83f1173ed2c0c72bfd5aafd35ce1207_JaffaCakes118

Files

a83f1173ed2c0c72bfd5aafd35ce1207_JaffaCakes118
.exe windows:1 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 1024B - Virtual size: 588B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ