293503ad2e89e26b3637a2485b22b6a6_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

293503ad2e89e26b3637a2485b22b6a6_JaffaCakes118
Size

645KB
MD5

293503ad2e89e26b3637a2485b22b6a6
SHA1

d438b24f324ac698365fe3a68187e0751202e93b
SHA256

224568671210ab7a52f24a11aa7f45158a97a028549ab474072d10f1a5adb1f3
SHA512

99c6457ded8cbc23bf99b42b4adb20746c537b09bc9d665b02d3c9f02a88ea3c6caf1c65656664ad25515106cb59b0ccb34955c9821a0da6458a575c26a6708c
SSDEEP

12288:FA8L4ePK5NNFK3jAg8Jplr0uQLfN/F3Z4mxxmdA42myKuae:FxsjKU+/QmXZn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
293503ad2e89e26b3637a2485b22b6a6_JaffaCakes118

Files

293503ad2e89e26b3637a2485b22b6a6_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: - Virtual size: 340KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 329KB - Virtual size: 336KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 314KB - Virtual size: 316KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE