31186900d3107a7b2d64bacd4990302e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

31186900d3107a7b2d64bacd4990302e_JaffaCakes118
Size

328KB
MD5

31186900d3107a7b2d64bacd4990302e
SHA1

39c44ccd68fe60194b30e67ce0d8aecc354945f9
SHA256

b3575bb255c504e02a78896347bfca4e6b0974707164c82f50d12438826bc7bd
SHA512

369506fd0ff9a7b51186fb7a10245ce02502d5c9ae9ab8ccfc342bd7e84a2495e8d3cf22f1749deeea3c944c7bb94256340fc5cc5721c09719085cff077224f9
SSDEEP

6144:sRjUcK5+gfpUOi0LTTwo/JskNAVNJN584eeDE4ootXV:sRYc4+gun0UIykqVNJN24e

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
31186900d3107a7b2d64bacd4990302e_JaffaCakes118

Files

31186900d3107a7b2d64bacd4990302e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 323KB - Virtual size: 323KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 190B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ