c18a2b83749636b7b14c74f47101709c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c18a2b83749636b7b14c74f47101709c_JaffaCakes118
Size

1.9MB
MD5

c18a2b83749636b7b14c74f47101709c
SHA1

2fbf181cb00d5592e59ea7d4da68f75598e1fe87
SHA256

cfefd432586a64e1e3ae4d4006ae90d6e4edcf43f025d2189dee8814ceb71f3f
SHA512

f125282d6b3c62eb705afad1d7e6d7188e122e457b7200b5e325c9ef1c5dc1fba37a5c91b739ba2bb104aed499426a29316669e85348d25b9dbf73f4aa5659f2
SSDEEP

49152:08h/TkMusVpz0rRbnKOkdLzJoR1oDm0Tk2esWFp:nTfVxyRALzuizk2o

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c18a2b83749636b7b14c74f47101709c_JaffaCakes118

Files

c18a2b83749636b7b14c74f47101709c_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 20KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 125KB - Virtual size: 145KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

msn
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE