b2df829acfe8877c9bd19da034900442_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b2df829acfe8877c9bd19da034900442_JaffaCakes118
Size

518KB
MD5

b2df829acfe8877c9bd19da034900442
SHA1

bfd446198b704aef1be76c6c3607598bd0de9f85
SHA256

367739cca04bda2462790db0823b421003b301815a8137fac6d7d65d2d9251ef
SHA512

5c748db82b1a4980d7844d5de49fab600caae009e7821d0473f68f5ef311327e7a6d92554611017bee7c2ab9b0e8d37b82531e48bc2dfad4da0317c00f46854d
SSDEEP

12288:iV254vYc8bR8wOr6BAlNWnFjX5/jg+VWv07BvbX/kT9A:E606BTFd7gh6XMZA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b2df829acfe8877c9bd19da034900442_JaffaCakes118

Files

b2df829acfe8877c9bd19da034900442_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

ildasm.pdb

Sections

.text
Size: 271KB - Virtual size: 270KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 7KB - Virtual size: 605KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 59KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.nkh
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE