e0b21678e4e9ae0aa2e99548afd08211_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e0b21678e4e9ae0aa2e99548afd08211_JaffaCakes118
Size

787KB
MD5

e0b21678e4e9ae0aa2e99548afd08211
SHA1

ce33ca1a49efbcc76db3db0b096600437abe7980
SHA256

c22c6d632908237ff5cf6a00e2a6746b190bea25d4cfb731007d9a04c28aec84
SHA512

c7d99f6073ea0086df942927f2af85eeef8c6ce20c2ca4a533442f5e313da1795084fbed81f1d5b2490953b218da8375ae1944436c08a9f9f6fffe5d64378a21
SSDEEP

24576:Pc8Y2G/w0NAAMTPnTpRblkRyWiwoM9XPfz0hTuce:PcJLtNMTLp3kRyWiwoM9X3zQTuce

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e0b21678e4e9ae0aa2e99548afd08211_JaffaCakes118

Files

e0b21678e4e9ae0aa2e99548afd08211_JaffaCakes118
.exe windows:50774 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_FORCE_INTEGRITY
IMAGE_DLLCHARACTERISTICS_NO_ISOLATION
IMAGE_DLLCHARACTERISTICS_APPCONTAINER
IMAGE_DLLCHARACTERISTICS_WDM_DRIVER
IMAGE_DLLCHARACTERISTICS_GUARD_CF
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

��iP�
Size: 2853.4MB - Virtual size: 1841.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_WRITE

}B�D�
Size: 436.9MB - Virtual size: 2880.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

��c4�-e
Size: 1810.9MB - Virtual size: 1824.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

��o8|�
Size: 3001.9MB - Virtual size: 292.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE

ƥ�A
Size: 3635.7MB - Virtual size: 4051.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_WRITE