30e5b5d5578403415615a4c952423942_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

30e5b5d5578403415615a4c952423942_JaffaCakes118
Size

28KB
MD5

30e5b5d5578403415615a4c952423942
SHA1

04c6c12c111779cd2990d7d0cf667d9676d33934
SHA256

a6d2257efe54a263c86023f03fde057e2bb518aa7bd9021db3c25644082809df
SHA512

d7f97076119849ea5e443a5444b44321211dead3700e88b1ceb81c36a51a54fbcabf1df017f8ee77dd2ed9618b227ab6c0ea83b6151d0ca5a68f07c8c3a21aeb
SSDEEP

768:Ejxa7BhMmyp3ISAEWhdcxZ69Jkx0FGzH5PJNPPhjU:EjcBLypAx3k6Tk8eBBw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
30e5b5d5578403415615a4c952423942_JaffaCakes118

Files

30e5b5d5578403415615a4c952423942_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 659KB - Virtual size: 659KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 181KB - Virtual size: 180KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 3B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 19.3MB - Virtual size: 19.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ