c882a2264b96a200aaef07d854b38641_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c882a2264b96a200aaef07d854b38641_JaffaCakes118
Size

288KB
MD5

c882a2264b96a200aaef07d854b38641
SHA1

55bc46855145370e3a0112a71e0db599b5cb8b10
SHA256

004667ff73cc70189df9ffe10d5a6458c31662efc44a630b34f6f6896eb0e3b8
SHA512

b3a99ca037fac9634bde84f045e8414414da3502c02639f20b68dc09aa4d77ab5e9b115f086e14b0af3025772dfadc283687076e9cded7ef5fb0fe8d0726e3d5
SSDEEP

6144:8xbB60m0Hhb4sAWzyd5J91OOhsItR2LwwL9okznbER92vzbNahsZH:81B5m0Hhb4sAWi1OE1YhpogbE/2vPN7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c882a2264b96a200aaef07d854b38641_JaffaCakes118

Files

c882a2264b96a200aaef07d854b38641_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

INETWIZ.pdb

Sections

.text
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 584B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.getpat
Size: 268KB - Virtual size: 268KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE