d242b35532c63da95a9b7cac50f92b35_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d242b35532c63da95a9b7cac50f92b35_JaffaCakes118
Size

1.9MB
MD5

d242b35532c63da95a9b7cac50f92b35
SHA1

b29d5bb75bd4eaae1170b3d5c1c2db0e7a28a58a
SHA256

40af4a10131c8c61312e7fa413a283312e95e049dd7dfae3159c2808460bb80f
SHA512

41b24f98b31b098a8964047ac09090bf86f594d3fe91f7e0b5ecabfbc410d7e3301585f3886bcaf6079653544bdf552f44b6b6728939d41cdd196c75e55ccb0e
SSDEEP

49152:615KXcsSA7xU81kHR6gWakurxp9ATC7WHI1xg:615Qcsg7Wo1e

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d242b35532c63da95a9b7cac50f92b35_JaffaCakes118

Files

d242b35532c63da95a9b7cac50f92b35_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 54KB - Virtual size: 53KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 485KB - Virtual size: 485KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dta2
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ