3b03ee44246d7c3f9e01b09c697598d2_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3b03ee44246d7c3f9e01b09c697598d2_JaffaCakes118
Size

89KB
MD5

3b03ee44246d7c3f9e01b09c697598d2
SHA1

6d8766392e9152968f9d4262affd1e3daae514b1
SHA256

661a3b46214ce776833e9db4a51699382a3f39d3da3222f95d15cb37b129fd81
SHA512

d09c9920a90eb592d1537347ab21b670b25039ba8bfcf273111f74d7162940701e6fd87edc1733dbcd4f3828d586e1a8cec06773d9088bd6cb219bf52b958507
SSDEEP

1536:xWXoqQ62MkO+3igl4V37uSOilWMPGx9q2PND0tAxXE:Vk83igmV3SLuWMOHq2PGtz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3b03ee44246d7c3f9e01b09c697598d2_JaffaCakes118

Files

3b03ee44246d7c3f9e01b09c697598d2_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 662KB - Virtual size: 661KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 181KB - Virtual size: 181KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 31KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 3B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 19.6MB - Virtual size: 19.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ