be0892c0f9474f45c2ef491409270847_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

be0892c0f9474f45c2ef491409270847_JaffaCakes118
Size

320KB
MD5

be0892c0f9474f45c2ef491409270847
SHA1

18b65051f50c5e94c89404e6c6db6eb5d8488573
SHA256

2e8429bab7c214ba3deb2e439a1ae4e103ed17a9afbc3eceb508ee9771031e6f
SHA512

d725d234cca4a311e413cd390bb78db524c3803e1ef98dde502f4ba3abc67798661eb8ffeead0df0c9f9df7d4b9c28668f92058050e2ccd91dff5ebce504e185
SSDEEP

6144:SHP7/GdouNeZrrfWTLCRtQMQQLw2AngsRHR5PA+mogNaxn2yyG:SHbG6uElreTLCReH2do5tgayG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
be0892c0f9474f45c2ef491409270847_JaffaCakes118

Files

be0892c0f9474f45c2ef491409270847_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

imapi.pdb

Sections

.text
Size: 137KB - Virtual size: 136KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.mjg
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE