dad6d0f025233b46b2027c9113e6019c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dad6d0f025233b46b2027c9113e6019c_JaffaCakes118
Size

2.2MB
MD5

dad6d0f025233b46b2027c9113e6019c
SHA1

948beff37fd70bfd594ec204f65473e84ff85098
SHA256

3be4a5ef64aa3dbc59d5ebb7904f8384d749ea52ef1e13237e38a9fde3324a28
SHA512

b8c23f447522b0015ba4a0deb50239823699713be165ebdb13176b085c245a0a8b0fdd642cb23a0f2c880852e804b2cf94a071980e8c877fcc6812cb4bdc0a87
SSDEEP

24576:GMBund1/P2ZxiMY33pym/C77CwnsSJJHJGG7uByLT3JqIX94Tx/OCJgpNi3c2c9T:/uL32ZEh33weiCwsSf1BN4TJ+2tI7acD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dad6d0f025233b46b2027c9113e6019c_JaffaCakes118

Files

dad6d0f025233b46b2027c9113e6019c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

graph.pdb

Sections

.text
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 36KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.cdata
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 154KB - Virtual size: 154KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.yvs
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE