d24a6f4490f2f6dfd122010b927354e8_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d24a6f4490f2f6dfd122010b927354e8_JaffaCakes118
Size

3.0MB
MD5

d24a6f4490f2f6dfd122010b927354e8
SHA1

a9232f8d4c55ce69e10c7df0a34c202c723ea8d5
SHA256

ed9a17d3492c56cb15ba5d282f620ce40b1dfb53f8bc3f294b266fc53d6632de
SHA512

8acf240a70a63b45e584810e362fde82cec1f2fb8b71052eaea70e0a8845a4828d2d34914480c9786e1ea34f57db24e22455ba11e7a1a15a997bd22bac85af7e
SSDEEP

49152:2NAAH35x/mE9rZI9Eq0dWk07RKAkbgs/fXJUHhZ2hKTCVCysZ7OT9kQcsZ8F+9U6:IAAh9Fq0F0dlr8WusODsG9Tt8uUOiH7M

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d24a6f4490f2f6dfd122010b927354e8_JaffaCakes118

Files

d24a6f4490f2f6dfd122010b927354e8_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 2.2MB - Virtual size: 8.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 394KB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 30KB - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 108KB - Virtual size: 200KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 235KB - Virtual size: 236KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE