b49a851aeefb7e2cc1db8c66fd8f0aa1_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b49a851aeefb7e2cc1db8c66fd8f0aa1_JaffaCakes118
Size

15KB
MD5

b49a851aeefb7e2cc1db8c66fd8f0aa1
SHA1

eec1a260fe7de1264dc36b391fd462911f96661c
SHA256

450a36e60dba45f2b7c7b399589defcced0000c8b72d1dc0935e13b781ad867d
SHA512

1e77c2e868f886a0172f6c14f4d577515eead4606a280e0b4869dbad711f91980960cdf057ecde2c5a979f77e6ee8c1c6e75ae6dbb2182832aaa1fbc07047376
SSDEEP

384:mZGRuihDFZmplHSxmdNJmukHUYewebt2NPb1EHG0nLUTqtR+5jloPGv5lha9JYw:mUNDzmH6m/0ukHUYewebt2NPb1EHG0n3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b49a851aeefb7e2cc1db8c66fd8f0aa1_JaffaCakes118

Files

b49a851aeefb7e2cc1db8c66fd8f0aa1_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 125KB - Virtual size: 124KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 362KB - Virtual size: 361KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ