db3521ae4ad2f38515b7f58d2ed36c70_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

db3521ae4ad2f38515b7f58d2ed36c70_JaffaCakes118
Size

14KB
MD5

db3521ae4ad2f38515b7f58d2ed36c70
SHA1

054fbb4effaabc751d6f504ae42628269baa14ed
SHA256

49378b2ec99f1270bf70752b5335a4a64364cc90d21490c14655a7c218a65504
SHA512

9953c96eef7013c4ed00d8777a3d737c8b1fdc2d0ed739b29d221a33b879a6bf0d9c78115cbf522983c051a25963db1038be9d66de1a01d0c5de9e068ce199c3
SSDEEP

192:ff++fBS+wKdjwB2gYH99R81XHgLMw2OF95JlomTU/Jw4MAsNoY3xvnxu9s8nvi0:pfBjTtwzP3oF+PMAsNhd8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
db3521ae4ad2f38515b7f58d2ed36c70_JaffaCakes118

Files

db3521ae4ad2f38515b7f58d2ed36c70_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 681KB - Virtual size: 680KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 197KB - Virtual size: 197KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 31KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 3B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22.7MB - Virtual size: 22.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ