ceeba58f0dfe9a9fb56d2ab900a150b7_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ceeba58f0dfe9a9fb56d2ab900a150b7_JaffaCakes118
Size

422KB
MD5

ceeba58f0dfe9a9fb56d2ab900a150b7
SHA1

d6274589f8f1159f54b325a1758636e5406e1cce
SHA256

3207aa24dca75476374452bdd8b4e733a47cb1de2201273a5dd9945e9fe47e1b
SHA512

fcbe3c793a7cc98e5ee99e943b55b0b814edae311a64cd287fea71954f76301ca39ea3b0a48c5580228a26e64d02d1fd6731a3e4e037541436e3a62f3bae3bad
SSDEEP

6144:ykB1INZdWaFzaE7mDGg7Y4+MFyBPys80G5sEOi9Ri9na5UVx3:ykBgdW/E7mDGg8xMkBp80GiZa5UVh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ceeba58f0dfe9a9fb56d2ab900a150b7_JaffaCakes118

Files

ceeba58f0dfe9a9fb56d2ab900a150b7_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 262KB - Virtual size: 269KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ