06c734849b05af5930f935c032c9fc37_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

06c734849b05af5930f935c032c9fc37_JaffaCakes118
Size

124KB
MD5

06c734849b05af5930f935c032c9fc37
SHA1

b7601569d2a09433d3978bc63aa36ed636a1af9e
SHA256

93bd10374d4603210fd0e5b37945fec419f2e32f41b4bbae344c941f3f701474
SHA512

911585ba31c9ba167608e9b38228274ed98b6c247396b60b7ad215df05a0d1056faed10185f0516518c9c4ff00ea47d6a5dce0128a3cb7c2ea6031f3761c52fe
SSDEEP

3072:ie+wVCx3j8XF+4oTCVl9ytLBQY9DC4d0vXty:7p6+F+4oeRY9R0vd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
06c734849b05af5930f935c032c9fc37_JaffaCakes118

Files

06c734849b05af5930f935c032c9fc37_JaffaCakes118
.exe windows:4 windows x86 arch:x86

525e19b4145fcab4c2711e63d6bdbc5a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ord173

Sections

.text
Size: 113KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE