dd48009d5e19793b461f7e9f08c26d41_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dd48009d5e19793b461f7e9f08c26d41_JaffaCakes118
Size

1.4MB
MD5

dd48009d5e19793b461f7e9f08c26d41
SHA1

b6a97137dec714e7042efec3f6886597199f8aa8
SHA256

02a14c2fe7738ce6b24606d9fb1bd972d0d5d7c5e3d8d72b6ee9ce6f67bfcaaf
SHA512

e864bb6db004a3517d1c003d608f0e738620a898e88df74b7a801bbb1f5cc0cd57b278f1f30d3d815bd981062f7e1c08bedcbbd98c5517833596bba26520ac16
SSDEEP

24576:wRGZiWAW5SKLHvhoiEGd+hH/MDwX1eikaQkOIisBwWZep7JpxV8J8lN9Nta492+X:wRAHAdQhbEGdwlejkOIiKwEuj4efpa4n

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dd48009d5e19793b461f7e9f08c26d41_JaffaCakes118

Files

dd48009d5e19793b461f7e9f08c26d41_JaffaCakes118
.exe windows:5 windows x86 arch:x86

e02a5fff28d9b441a13d3dd13f5b7cd1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32 kernel32

GlobalFlags ��

Sections

.text
Size: 944KB - Virtual size: 1.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SE
Size: 396KB - Virtual size: 396KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SE
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SE
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SE
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ