ebdd14112abb6a0057503dddd5a5a3ae_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ebdd14112abb6a0057503dddd5a5a3ae_JaffaCakes118
Size

6KB
MD5

ebdd14112abb6a0057503dddd5a5a3ae
SHA1

25edd219aa84f4ae3b36045e0ae6f91b8c7b5a48
SHA256

61ad9c8567c1b7ec0b84e119aace6540a670eb80c3edee84da4d63f4350473b8
SHA512

f35319ca4efb66dfd858e3560a328b8d969d24cf330c6b2164247bdb891ab2156c9945ff52b3cf8773f688e65bdee1777c20fa6569fe04f377a68bf38f59bc81
SSDEEP

96:5hpUNGBlkRmk7Smi2Y3NHxPXGUJwQpnisuPtO8Sge0eFB28pDxjyXFvAvrvDAIvM:5wNql6mk7Smi2UNHxPXGUGInisgK11+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ebdd14112abb6a0057503dddd5a5a3ae_JaffaCakes118

Files

ebdd14112abb6a0057503dddd5a5a3ae_JaffaCakes118
.exe windows:6 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_REMOVABLE_RUN_FROM_SWAP
IMAGE_FILE_NET_RUN_FROM_SWAP

Sections

.text
Size: 116KB - Virtual size: 115KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17.2MB - Virtual size: 17.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ