b51cca9872735f9e9d6e12658cde2e4b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b51cca9872735f9e9d6e12658cde2e4b_JaffaCakes118
Size

465KB
MD5

b51cca9872735f9e9d6e12658cde2e4b
SHA1

8028ce42bbc03269b5aff9cc61d3b267df839026
SHA256

6ea9ad859515ee70e1dd42f1bc53d74b1265b621d73b517f7e749c5b1ff557e6
SHA512

a3f30b4ccf5c33f540d5f6a773ebf3e7807d80258a116b1adabf59c365761a5fab1388c45ac10d3aef78bc6fb4d58b5b5f7d7d6fbe2d75243b81bc18088b69ad
SSDEEP

12288:ymkOy/+ZHWmIAr6US9kqIXd7E7pSiha0bKqgqZ6J3N:yfOymZ2mItP90d7E7of0bDgq2N

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b51cca9872735f9e9d6e12658cde2e4b_JaffaCakes118

Files

b51cca9872735f9e9d6e12658cde2e4b_JaffaCakes118
.exe windows:1 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 1024B - Virtual size: 584B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ