41c1d886d4a2e32a9eca0a7c3c3a154b_JaffaCakes118 | Triage

Sharing

General

Target

41c1d886d4a2e32a9eca0a7c3c3a154b_JaffaCakes118
Size

55KB
MD5

41c1d886d4a2e32a9eca0a7c3c3a154b
SHA1

7475b7a59f7f4def5e5c0d9986e26cf832c22c8c
SHA256

b568ce8f4d416355ff93dbab26869dbc2ed119bcd0c0d61d6620b147b2d9b52a
SHA512

b0e516fc7390bf2294de7f1ad64a27c9442919f42cbba1b52e261a56f2ca9220b0bd1fa27dfc3da2da5d66ccc309885fd6d37c28f300c1e2103761889b3a59d2
SSDEEP

1536:Lj8BLypAx3k6zk8eBBEZf/hwLPQL4IMetf92:CJ0BBEZx0P+v7tfg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
41c1d886d4a2e32a9eca0a7c3c3a154b_JaffaCakes118

Files

41c1d886d4a2e32a9eca0a7c3c3a154b_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 659KB - Virtual size: 659KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 181KB - Virtual size: 180KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 3B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 19.3MB - Virtual size: 19.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ