38c8b60903de49f0a18143e8457a1d6e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

38c8b60903de49f0a18143e8457a1d6e_JaffaCakes118
Size

316KB
MD5

38c8b60903de49f0a18143e8457a1d6e
SHA1

6a4c4dc778c0fd647c0b13d1eb2aaa7c1a8aba57
SHA256

c6c6df8eadec426bfb7bc86f53bd524718a0360b54e228e1cc42e2dc93b8aece
SHA512

39b6e930393a40c2c2949c90a96580161aa8bee372a5cf49e31357cf08f364d12550977f772f7a0298d2e8e4add702fb902195a8661ba2ece7220d89d4fdca3f
SSDEEP

6144:SndYrCvVGNpfz5cECpQBF9tVUeLDrMujNQexO6QEUijTSf/nPSc0oj:8d0Zz5cEHBF9tVUeN5VxO6Qzi3GP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
38c8b60903de49f0a18143e8457a1d6e_JaffaCakes118

Files

38c8b60903de49f0a18143e8457a1d6e_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 195KB - Virtual size: 195KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ