407b1b48816c137d23fa7085d8fedda0_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

407b1b48816c137d23fa7085d8fedda0_JaffaCakes118
Size

183KB
MD5

407b1b48816c137d23fa7085d8fedda0
SHA1

5eb1f0472db03af33719fd0776938751d1076da2
SHA256

6255cc2cadb25d11d191213cb5bd2b288578fc66c007003c28bedaf699d7f172
SHA512

8db6bd8a71554620058e005ae76ff4a2ffaca229a65c3483af7ada2e72a8cb380eccd49ab663505121b63256e2a9ae03f06619598e2820faccc5b7b4ab1376c0
SSDEEP

1536:rK7N7e5HvCHs/4h41xG5z2GVmFw2wn45W59HkzeLYPL3fVynafqvPdIOU5gFPppw:rKBC5CH+x3Ggu2w95YeoLoSqtIz1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
407b1b48816c137d23fa7085d8fedda0_JaffaCakes118

Files

407b1b48816c137d23fa7085d8fedda0_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 73KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 15KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.petite
Size: - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�
Size: 92KB - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE