e1ce13a761fa1add40e9a6d19e385328_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e1ce13a761fa1add40e9a6d19e385328_JaffaCakes118
Size

19KB
MD5

e1ce13a761fa1add40e9a6d19e385328
SHA1

75dc900a2ce7dd081923e8452a36fc516327b2f5
SHA256

6d4bc77cbfd009c985ce94f720ffce7d4970ea6c5d6c0e94e1463d3a54e80b85
SHA512

1a9e5c089a32be7bece5d668df41cce8049c27cb1236fdd5dd5dd526e832382216ab04d106cb4cc67f265d3038480d46bc4a220e4dd9166438a29332313b5a0f
SSDEEP

384:LlFpy0t/zHZcfwcfY/C1T6AR1ZeNF0ddjigdn7HiFpgq:Fy4aYK1T6AZeNFKigBIpgq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e1ce13a761fa1add40e9a6d19e385328_JaffaCakes118

Files

e1ce13a761fa1add40e9a6d19e385328_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 226KB - Virtual size: 496KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 25KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 3KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 350KB - Virtual size: 352KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE