c1f85a8d042d7732136ef0e568194fe5_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c1f85a8d042d7732136ef0e568194fe5_JaffaCakes118
Size

4.0MB
MD5

c1f85a8d042d7732136ef0e568194fe5
SHA1

077e220596df1ab31870f964bc46c26b17d25e6f
SHA256

44cf844cb334c72f169ee58f2b4d677443bad8031d0a9f8df8ca783f6dc90f33
SHA512

2e7d1bca13de1f47d527cb43499a8b234081ea241007ea3b868a144506d11bcde70c6ae9acd66d2be00f6550a1096dcb36d7a84abda63942164c10e5389585b3
SSDEEP

98304:aSabgAcqnC2sQ77esTmuTywF64CuVKSrEQZviXSVhYMOjZtuJK:ap8AcqnC2sQtJIA1ZsWYMOjKU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c1f85a8d042d7732136ef0e568194fe5_JaffaCakes118

Files

c1f85a8d042d7732136ef0e568194fe5_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 2.0MB - Virtual size: 2.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 827KB - Virtual size: 827KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 74KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 828KB - Virtual size: 827KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 263KB - Virtual size: 262KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ