7311bf13c9ea3dc8ca1808ebc8fe29f0_JaffaCakes118[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7311bf13c9ea3dc8ca1808ebc8fe29f0_JaffaCakes118.exe
Size

625KB
MD5

7311bf13c9ea3dc8ca1808ebc8fe29f0
SHA1

851993bd1e2c5c6c22749847201a7c6bcde936bd
SHA256

75ddf697d1825b2bce1c67f9a19ec4be76c5ef70ebdbf16ccf92ffded91ff7ed
SHA512

a99732798487c8f37495581ede758de6008c83660d0bec0a7c4909e2b729e6e0c04a3e27cf878845ee4b0e763287f99c954efadacc4266a7236fb66fe3fbae22
SSDEEP

12288:TRSwIEv5XD6SJRimR4BVH7LUt3sSHAwSfxL/2Dc3jDLLmt0LDQewsAjRO:T1ES0rU2aewsAjY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7311bf13c9ea3dc8ca1808ebc8fe29f0_JaffaCakes118.exe

Files

7311bf13c9ea3dc8ca1808ebc8fe29f0_JaffaCakes118.exe
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ