b21dad91a168dc26ab86d6eaf6a3d42d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b21dad91a168dc26ab86d6eaf6a3d42d_JaffaCakes118
Size

709KB
MD5

b21dad91a168dc26ab86d6eaf6a3d42d
SHA1

aaacdeb31b41afc1e9df52de989954e0b92ca7b1
SHA256

c2921dc37935c692e1d953d2f3602cd731d99ae5a1aedd99aa4ab48936d931e5
SHA512

a315af8ee4d533bc5dba5084e138919bd64349f2abd9ac8d053e1b9893c1aab365ac57d83e4c88d255e245ad0b99bf20383e57b628be339f8941ed94ffbe2388
SSDEEP

12288:rbWSefXEO+Fc6ifHnZ+LOQTMBwd9F3Z4mxx0JwLUWECC+xaYgxR:3PWy3g89QmXaYULpHYgn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b21dad91a168dc26ab86d6eaf6a3d42d_JaffaCakes118

Files

b21dad91a168dc26ab86d6eaf6a3d42d_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 20KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 349KB - Virtual size: 368KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 338KB - Virtual size: 340KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE