468f9c4fe443c5433ec42cd871d81158_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

468f9c4fe443c5433ec42cd871d81158_JaffaCakes118
Size

313KB
MD5

468f9c4fe443c5433ec42cd871d81158
SHA1

d2f54b6d0819bd5044f81026e0be9e7c04832bdb
SHA256

a9900bf86eaea4f006873de4fc883a6e6f6885f393edb44db00f499725e1e6a6
SHA512

3f7058b709be7866113c7f92586a6b121ab6e60c4afc625933ba9e25a7a0e1ca1032c9f6c5dfd9f97aac08ba28b0fcb2adc0a9948270d74ed3284684bd81c9d8
SSDEEP

6144:SvV3Utu3EUCjMq5c662bmIj8gZjYCy0yd+SjzGAflWS7hgs8VloYa/nK/QJ/muRd:UV3Utu3EUCjMUG2xjDZsN0yd+SjzGAf9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
468f9c4fe443c5433ec42cd871d81158_JaffaCakes118

Files

468f9c4fe443c5433ec42cd871d81158_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 311KB - Virtual size: 311KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 54KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 177KB - Virtual size: 176KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ