f0505361f3404798d5a1f082317bb640_JaffaCakes118 | Triage

Sharing

General

Target

f0505361f3404798d5a1f082317bb640_JaffaCakes118
Size

26KB
MD5

f0505361f3404798d5a1f082317bb640
SHA1

1351e74194e3198778f3792ae06f3732ae1ce843
SHA256

e8ca303030d4ee860c135c517c5a1b85c7e38a2f35ac91b2df3018a92c0a2f37
SHA512

bb21826b500b9abcfd16425b83d3e8a03512c6bf702d8d5dd42af252c39777f7588e9a7e75332805844fd5d135e1e1e094de1f52df8d9578edfe1dd31dc33b16
SSDEEP

384:0lJrTtwzXFoFmnDAsNZ9U+kFvOe45kF/YftmtBCYp7S2VxyRah:6JrTo1o+kIj8FFgItMYkkxyRy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f0505361f3404798d5a1f082317bb640_JaffaCakes118

Files

f0505361f3404798d5a1f082317bb640_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 681KB - Virtual size: 680KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 197KB - Virtual size: 197KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 31KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 3B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22.7MB - Virtual size: 22.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ