bef7ed4b0b914f4927b7a6bfa11260d2_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bef7ed4b0b914f4927b7a6bfa11260d2_JaffaCakes118
Size

834KB
MD5

bef7ed4b0b914f4927b7a6bfa11260d2
SHA1

31910c385ffd2d3473ade54adf1e95dffdffbb4e
SHA256

a87e48cbdf34827e6a3fdc3abb09c6e7c2e5748e55a11f9c817a26d86c4a1534
SHA512

4b3df177f81b033d56a4c1225ad4fd69dcb8edee872fe2d2cdd533376714c319b8ff6132d8772fe0bdeb5e77d95240607bb45634ec55b3d794a31bac92b2ebd0
SSDEEP

12288:ojbo7YNQ+2YcKify3iO2cQJ3DbXxRjRydmKchOgUgah7JU8muEFEsjJIGev7GFhW:ogwQNsiK3X9mTxRymxOZ6ZuEkTwoG9a

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bef7ed4b0b914f4927b7a6bfa11260d2_JaffaCakes118

Files

bef7ed4b0b914f4927b7a6bfa11260d2_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 11KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 3.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 601KB - Virtual size: 608KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE