0afbd6be4df29551e35ceab27dcf65cf_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0afbd6be4df29551e35ceab27dcf65cf_JaffaCakes118
Size

107KB
MD5

0afbd6be4df29551e35ceab27dcf65cf
SHA1

ae80c9787c38478d61dc2287000719c42b235562
SHA256

196b76408a530474083a3ce7d047c3d96d58e22f933eae96d6c80706497b5f7c
SHA512

4ce9d1cb47a4930b80c42af720e3371d231d82ae9f8b23645698dfaf8f96cf96d642ec7e6ed8916f3beacc98a7a00ebc9e57d09f6da5bd43721b006557e32195
SSDEEP

3072:W1PHvUcyAISKcREiB8BW7LEeRdKNAjmqQYJaRtgUPI:0BKcRPW6KDqTJaRKUP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0afbd6be4df29551e35ceab27dcf65cf_JaffaCakes118

Files

0afbd6be4df29551e35ceab27dcf65cf_JaffaCakes118
.exe windows:5 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 79KB - Virtual size: 78KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ