dfa82855f35c06935de3358981dec31b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dfa82855f35c06935de3358981dec31b_JaffaCakes118
Size

409KB
MD5

dfa82855f35c06935de3358981dec31b
SHA1

d77f17a2da1d65c26d5ed316a0aafa11b9b91988
SHA256

194ccbe46922e478e7c48615ee19ea3145aa29a7b897f1cbcffa7c9b48e723d3
SHA512

c4bbd6ad8c6263e14997ae60c489a32d9bb050cf736c5216ee497eb80b8dbd48910b191f6373a24d1ce4be19e0f44f86b1e3d7e079b90301ca0211be586fc4ce
SSDEEP

6144:GE4ETc4gSx6u0wylpm58BoCog/NGMpOR9aoDeOBCpF0qEz2Kgf51sP5v35LF:GE4gbw77aZtg/NGmO/aOTBIF09z2WP7F

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dfa82855f35c06935de3358981dec31b_JaffaCakes118

Files

dfa82855f35c06935de3358981dec31b_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 33KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 1023B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 316KB - Virtual size: 320KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.svkp
Size: 56KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

RCryptor
Size: 79B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dswlab
Size: 168B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE