ebe3a37a7b84b7b1438f742be32de141_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ebe3a37a7b84b7b1438f742be32de141_JaffaCakes118
Size

967KB
MD5

ebe3a37a7b84b7b1438f742be32de141
SHA1

5d856292dba90e2c27fc3c55e8ae46a691495fb4
SHA256

18414154841ba040509c529f46928a75ba16f8ce6242e7cac07426e79e0de3d3
SHA512

d2a452acb009c5407dcf900183a65fa795de9d126ee19443a249df97f7b10a3e8399b2dbc6541478022284f8907519bedeb6535ec48726d2a5174bf6fbbc9afc
SSDEEP

24576:y/qrQ0yVrPg37AzHqA6ZfJub3NMVTMk66k66666T666R666P66066V66E66K66HE:yCsnrPg37AzHqA6ZhY3eVTMk66k6666c

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ebe3a37a7b84b7b1438f742be32de141_JaffaCakes118

Files

ebe3a37a7b84b7b1438f742be32de141_JaffaCakes118
.exe windows:1 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 583KB - Virtual size: 582KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 369KB - Virtual size: 368KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ