0224964b13fc55ccf9c8d366b0a25179_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0224964b13fc55ccf9c8d366b0a25179_JaffaCakes118
Size

393KB
MD5

0224964b13fc55ccf9c8d366b0a25179
SHA1

c0f2e6a63531a2d3d6deacb5237109fd404ce84b
SHA256

b3eefffb97b7fe738981ad8d46176c7514bf7a6570e37a4b339f0b95a5a6fbd2
SHA512

c871d63336387176c077e492f01008e6f51b490e134909ce7ab4a29e57a5d60cc14b6e415dd5cf3eb36cc4c9616097118e67e8f4ab31528429c6ee6018b24683
SSDEEP

6144:WNvoltxhSgQF2idZecnl20lHRxp3g+pkcRcFCvRosck7Xruy1MvRgLshEXG+v:WaPCrF3Z4mxxbpk+cA5Dv7XzMEXl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0224964b13fc55ccf9c8d366b0a25179_JaffaCakes118

Files

0224964b13fc55ccf9c8d366b0a25179_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 21KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 39KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 328KB - Virtual size: 328KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE