562eeced118376b8585557123c940939_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

562eeced118376b8585557123c940939_JaffaCakes118
Size

882KB
MD5

562eeced118376b8585557123c940939
SHA1

c2d810577474e9d06fb50e9393183da56902af9e
SHA256

760f933827f2e89a6f51fbf63dea45f7d5fa0f177a2d5795ba9615db5e56e8f2
SHA512

ef16c4a56f61dabd953227ec1f60bfbd3279767687f3c28bad883bf98f3f911965628a33e544456b613c196a6cc89cc74959b8f6f5023c36b895c48881149ffb
SSDEEP

24576:sR3Prf+V+r40Y/WngOeM8Ez72sud5jS6qOim:mE0YbOFvu3jLq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
562eeced118376b8585557123c940939_JaffaCakes118

Files

562eeced118376b8585557123c940939_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.textbss
Size: - Virtual size: 6.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 872KB - Virtual size: 876KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 890B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 24B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ