f627b80406efb43bdc7e81414161d8ae_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f627b80406efb43bdc7e81414161d8ae_JaffaCakes118
Size

388KB
MD5

f627b80406efb43bdc7e81414161d8ae
SHA1

dcfaa2f9552b03fa1c8de3299219368c2e7372dc
SHA256

bf905c40cbaec7df0317007fdd06591aaeeaabd41ca5f8e4e9245d4ee804d75a
SHA512

b1cd74f4c5e423b965a84f423859bacb0662caf214263c5ef5ba4162be5f9db6c7e8f6b38979b2c3117462e3fcc21d86a843386980b4c8f858df9e91eea49a16
SSDEEP

6144:Emf8HVwhn3bwB4IBSWF2idZecnl20lHRxp3g+l+mXvR6Zs3z8lpxu6UTP37ZmLYf:EX1GwB4KF3Z4mxxbEPlf03tOYf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f627b80406efb43bdc7e81414161d8ae_JaffaCakes118

Files

f627b80406efb43bdc7e81414161d8ae_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 72KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 314KB - Virtual size: 316KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE