a94d3f96113d43a0e6f1c8cd39885329_JaffaCakes118 | Triage

Sharing

General

Target

a94d3f96113d43a0e6f1c8cd39885329_JaffaCakes118
Size

153KB
MD5

a94d3f96113d43a0e6f1c8cd39885329
SHA1

6d7fa8ceea1cf7dce516c4240659e138bf9435ed
SHA256

55997bf8cf06b952a5a7d00c51a5c50af7ea6c2e65c8a907502b0008de4262da
SHA512

4d94b87959ae684d9b6c9f83ab92d92e9f4137e7d68639134ef6c8bced8bb01717f307debfb2e2fd0d5212df74b77501415a76a55c65a186b209fd3ad512ce83
SSDEEP

3072:d2jpmyvLmkrZOWpjNtd/barDx/J/ukrXzb/2UGvKrUiN3Y0wUJ:Y5d55dqJJ/ukvbuUGv8Br

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a94d3f96113d43a0e6f1c8cd39885329_JaffaCakes118

Files

a94d3f96113d43a0e6f1c8cd39885329_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 92KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE