08cf19b9b513d32f8827c856fbddf10b_JaffaCakes118 | Triage

Sharing

General

Target

08cf19b9b513d32f8827c856fbddf10b_JaffaCakes118
Size

561KB
MD5

08cf19b9b513d32f8827c856fbddf10b
SHA1

3b40e965e82c643968b5d01ee43b09a364b9772b
SHA256

05569c57b97b9a4af0a639bd80277f5443e06fb9f713d837be4cc02e8b22f32e
SHA512

36cb9ee2fd79b1effd062902be3ac86be6c9b3abac521e0d8027414facf7279ba3ca9d39de32c2cb3b2aec0458ea191ff4f41073f5f134135f8e1a281e0ca67f
SSDEEP

12288:Jg4nhlDxFSMBEtYBNVyC5XQNOCjGYUGYGbVdPTsza4VHGHH7yWWnkJ:Jg4nhlPESNVyC5XQNTj2o3sG4VmHHGWz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
08cf19b9b513d32f8827c856fbddf10b_JaffaCakes118

Files

08cf19b9b513d32f8827c856fbddf10b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

t:\misc\x86\ship\0\moc.pdb

Sections

.text
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 329KB - Virtual size: 329KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.uro
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE