ce21d2e9ee0e3f9a19f7afd11c926065_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ce21d2e9ee0e3f9a19f7afd11c926065_JaffaCakes118
Size

469KB
MD5

ce21d2e9ee0e3f9a19f7afd11c926065
SHA1

9084eac6a4181b2314ad15af2b6474e0648223a8
SHA256

046f1a8f9f754e05e705df8ff366759e396d2cdbd178d5575b4b3f51b5c9e877
SHA512

c052f10b4d2bb3e106435f2e4a79c5339712cf62f5f93e8672d2cca078d6155e9b4e09b4afc0c84e028e7e76bf8cebf93d4a305fb43e1290bf2d8cf84de12dad
SSDEEP

6144:XWXUY1yc0eQeOC5OO+wP3NzX6vOVWNLjXwGFql8QeGWjN+tbCe+q/O:mkY1lvfzP3xrI5dE8tGWZiRO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ce21d2e9ee0e3f9a19f7afd11c926065_JaffaCakes118

Files

ce21d2e9ee0e3f9a19f7afd11c926065_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\workarea\8.751\install\Monet\Apps\Bin\Win32\B_rel\ATISetup.pdb

Sections

.text
Size: 128KB - Virtual size: 127KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 120KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 12KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pmj
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE