db6ea94117ebfaabc2cea076dbdcf9dc_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

db6ea94117ebfaabc2cea076dbdcf9dc_JaffaCakes118
Size

428KB
MD5

db6ea94117ebfaabc2cea076dbdcf9dc
SHA1

9764edb767825e1c7f9d8f4a7a150aa0ce880980
SHA256

faa461281c5abc3e7cbe4c8dd33f10fd77021e06545334fbfafb49b1ad84609a
SHA512

fbfc717b662894908dac799992af62d1b1f8e5a45db9fc8e15e34de0ee00ea3715cbf6d6cad1af46e5e465779ebbb43798baef2c622b3fb211e9278f99b41116
SSDEEP

6144:80KCJyiHB+nqr0FpIlsUuDLhqK1xOuSSlxqkj6B08hdL1YgtIBTtUNXdQsCH2XKz:bd90FpIGUwMUxJjv2dLSgqt8NQlem

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
db6ea94117ebfaabc2cea076dbdcf9dc_JaffaCakes118

Files

db6ea94117ebfaabc2cea076dbdcf9dc_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 142KB - Virtual size: 141KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 18KB - Virtual size: 199KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 61KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ifc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE