aadc3dac4a1bfe626622dc57d2731d58_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

aadc3dac4a1bfe626622dc57d2731d58_JaffaCakes118
Size

660KB
MD5

aadc3dac4a1bfe626622dc57d2731d58
SHA1

c5091ecfa1e2ca2d54260ae81c3baf03ef27e935
SHA256

e5c8a3720358a225a03d8cf8e0ec2d2cb74a4c5fdbd9024c15e8529a5fae0983
SHA512

422709f497a8376ca279477df6ea5b74f16acd0afece4d862d041cd4f667ec8c65dd0f0d486ea6764f935e22e7d21d4be2b0dd80dfc3a82ff387fcb16b0b125b
SSDEEP

12288:WdVG9vU/nD7UhXc1aHOoBVWZIeI0MMh1hjvHV+zsD+Rr6j2eWFH+HRdQ:WecXAcAuw4ZZMm31gsqRr6j2eBR6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aadc3dac4a1bfe626622dc57d2731d58_JaffaCakes118

Files

aadc3dac4a1bfe626622dc57d2731d58_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

tp
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Im
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

f5
Size: - Virtual size: 280KB

nM
Size: 1024B - Virtual size: 626B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

my2VENkl
Size: 512B - Virtual size: 420B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

0TN6LuG
Size: 94KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE