45d1a5484933ad2e73707d08b03f7f9c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

45d1a5484933ad2e73707d08b03f7f9c_JaffaCakes118
Size

218KB
MD5

45d1a5484933ad2e73707d08b03f7f9c
SHA1

5066eda88dc26e1db3612e7d46f07c20dfb69dbd
SHA256

6b9c2f39c7e47ffdd14ebf6efc0d9ece5dbc7ad58f3e228eb04fc21e64ff31a6
SHA512

6c94ab3bb41b09eeab3e05a13d9ad691a9c6dc53eac3ee59427e1591837676a161fc225f850fd3ab350a112a290378a212f3c7f9d9c212864ce3a596221a469b
SSDEEP

6144:ogulHk/ocxioTlFJlvWF/uivCh+FPMWQKct19Q97:ogua3goTlF3vWNCh+af5JW7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
45d1a5484933ad2e73707d08b03f7f9c_JaffaCakes118

Files

45d1a5484933ad2e73707d08b03f7f9c_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

EPX0
Size: - Virtual size: 396KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

EPX1
Size: 209KB - Virtual size: 212KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Ersrc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata m
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ