dce66019934966af01b060529c3f6915_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dce66019934966af01b060529c3f6915_JaffaCakes118
Size

2.1MB
MD5

dce66019934966af01b060529c3f6915
SHA1

bb614ce78e822419bf3ca8bfc65632340ed1555a
SHA256

089a572c6535e317804f1fb1bf96e8209166d4ae57391484f80b5528b1061411
SHA512

fd37d584b7a50e1560ec20005174a5f541a0f29ab2f6df7aec032c6b66bf523ee2df5ce85b3a6c706ec347c073a82a7916e9c83710df4c4b22aac246f8a46cb3
SSDEEP

49152:qETBJ5EVPrrDA5AQ1pxG/vB6od7cJyS+89rA:qAH53yvB6od7cJyS59U

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dce66019934966af01b060529c3f6915_JaffaCakes118

Files

dce66019934966af01b060529c3f6915_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.hd$9cb
Size: 1KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vfs56r
Size: - Virtual size: 740B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.engine
Size: - Virtual size: 3.0MB

.rtss
Size: - Virtual size: 424KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tss
Size: 115KB - Virtual size: 116KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE