f68dd4bba65bf4f6584b1aa4fd74abe5_JaffaCakes118 | Triage

Sharing

General

Target

f68dd4bba65bf4f6584b1aa4fd74abe5_JaffaCakes118
Size

1.1MB
MD5

f68dd4bba65bf4f6584b1aa4fd74abe5
SHA1

03fb29723cb3ca5fd7714c49ad77ccf0bb293b00
SHA256

7f396801cd173497e6f6e6454570b56827a0ad3de1dd59dd126dcddde6960e3b
SHA512

a1772565c2dd03e9aceeea848684be68bcd0e3e3da183291605439644c10d9f1b523a421df0771dfac23bf3a98efe8fe53b3d2715118cfbf5b8da0771d22e020
SSDEEP

24576:kHCVlWCcYIGjJnIabGo0l1vQ0HKcg464OJGQcOAjE46:kCelGFxGou1nHDdlOJGx56

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f68dd4bba65bf4f6584b1aa4fd74abe5_JaffaCakes118

Files

f68dd4bba65bf4f6584b1aa4fd74abe5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 17KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 174KB - Virtual size: 2.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.4epalis
Size: 909KB - Virtual size: 912KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE