304c077ebb0ab0e7ff837da21604fd16_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

304c077ebb0ab0e7ff837da21604fd16_JaffaCakes118
Size

1.3MB
MD5

304c077ebb0ab0e7ff837da21604fd16
SHA1

f8fa63dfb2400834d6a6a58f40ad26931b708750
SHA256

ec70e60242c985854dfc4512d6c09a1a6bf2dfa6096c659fcce16f859fe5c475
SHA512

4bb09e1d708f67a6afbb51406721daf807029e52123869a5d54ef8266bc461e2787f7e9adf281db8f62f5abff7c6346f134019f48ac00310886cf8035a9c6c62
SSDEEP

12288:zWoCL5EjKdikmoYwt7JsCCUCsDBPXFd5NcK9YLFL98Y:zILuWdIFiFLCsDBPNNcKgh98Y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
304c077ebb0ab0e7ff837da21604fd16_JaffaCakes118

Files

304c077ebb0ab0e7ff837da21604fd16_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.tls
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dataJ
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_cabs
Size: 687KB - Virtual size: 688KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.textvb
Size: 229KB - Virtual size: 232KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdataM
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 359KB - Virtual size: 360KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_BSS
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE