ea33a9f5a2114544b1a21391fbd86dd2_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ea33a9f5a2114544b1a21391fbd86dd2_JaffaCakes118
Size

1.2MB
MD5

ea33a9f5a2114544b1a21391fbd86dd2
SHA1

94844113866d35ef6dbcec32e60fdf793e5f06fe
SHA256

139b3e1b767c854caa7440fafe6d8d1e6a094165f21f11b262ea4c3ed0d4fc0a
SHA512

0c198d2bddf1d2454cd524d4ad0e91ad224a7728b397626742200e87aa9d4ed14328019a98410132dac89519d6fcb122e9882f622def433fd96f3145d6834c4e
SSDEEP

24576:rFVHKlkWymgiKT+DPjcIAA5JwYBygcqFdMri1hnG2+pGTQioMa:rTqlJymgiKqDPYIteKGri1h6Gciza

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ea33a9f5a2114544b1a21391fbd86dd2_JaffaCakes118

Files

ea33a9f5a2114544b1a21391fbd86dd2_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 20KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 132KB - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

vip-44
Size: 1.0MB - Virtual size: 1.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE