0d3f362948b5372f46c3121f30f0129e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0d3f362948b5372f46c3121f30f0129e_JaffaCakes118
Size

1.5MB
MD5

0d3f362948b5372f46c3121f30f0129e
SHA1

749d44558f2a9bb29c32eb11138593a0f122448a
SHA256

858cc7d35062d6733f1c5e750d08e2f44b0f97c53a99c404845d396d9486e1a5
SHA512

cce9c6d8a3402352aeaea2dd1bbbd1e20be81a23dbf6b73fd306adcdcf991865815a62e80f51980fc05076d8a369975ffeb931f805f73d3c48826292f7c54530
SSDEEP

24576:ZRutr7f/q0N+kBw9qmoljoXYFDrric/dwVqBthRF32Uo5TeyxP:/I7KhueP0o0DrO2d7Z32Z5Tt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0d3f362948b5372f46c3121f30f0129e_JaffaCakes118

Files

0d3f362948b5372f46c3121f30f0129e_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 979KB - Virtual size: 978KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 219KB - Virtual size: 219KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 30KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 105KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 176KB - Virtual size: 175KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ