44ef67f8e2b838e8bfc157f2447d90d8_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

44ef67f8e2b838e8bfc157f2447d90d8_JaffaCakes118
Size

69KB
MD5

44ef67f8e2b838e8bfc157f2447d90d8
SHA1

ea6ec1b0ce1c12c57793c4da9d3afb90a3bb80b9
SHA256

62eab8ae567729af4e6889d5f395d6b054ab461bd68f1f56433810f7a7cfdc05
SHA512

5c6f52889662bc4e6cbc428ff805ead9a4f7a03f43d9ccf92b47b9ff3b24808199a6fac185399797a19cd0cf1421b9dd7c2a0f072d5c8cfd97f87a4f71de2b0f
SSDEEP

1536:YyeLQnk+1jlkCI1A+vhUBOhwWiiksVUjGSEUwrgd:Csky+1A+vhUMNibq6GSvQQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
44ef67f8e2b838e8bfc157f2447d90d8_JaffaCakes118

Files

44ef67f8e2b838e8bfc157f2447d90d8_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 660KB - Virtual size: 660KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 181KB - Virtual size: 180KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 3B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 19.3MB - Virtual size: 19.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ