da858ae6034778947fb94f5265efb393_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

da858ae6034778947fb94f5265efb393_JaffaCakes118
Size

2.2MB
MD5

da858ae6034778947fb94f5265efb393
SHA1

9bd020c2a2f6e22f36ca926bb72a805ee0aad054
SHA256

82dcb46f79aa40912a1cee521fa7cefb5fca14bcccdb8c5312f2838745501ef4
SHA512

00d2908430a6cbaf0f92dd14552ba99d64a1c886a80244a6aebbede44be15ae234c705b28911696ea8eca09804f5d734e8741ff1f9659a80e2bff23cac19bfdc
SSDEEP

49152:Sedvnn/4MnYYJ2ZhqSGLHkJEMecY/iakOElMaFLk:fwIDQHdak7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
da858ae6034778947fb94f5265efb393_JaffaCakes118

Files

da858ae6034778947fb94f5265efb393_JaffaCakes118
.exe windows:6 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

bckgzm.pdb

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 324B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 74KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ