455bd6540ac00f3ff2b42884fbb5059e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

455bd6540ac00f3ff2b42884fbb5059e_JaffaCakes118
Size

230KB
MD5

455bd6540ac00f3ff2b42884fbb5059e
SHA1

32b297f72d84996505a7a84a76bbdd5099bca7d1
SHA256

12ca10df20a3b449f0f2e56baa071fff06f53d30c47ab1a1e156311a8df1b93e
SHA512

ef981a92e2d3b31611dabcda3fe3bbe34ab54021270426a69d3cb335768265d9865cb0e5694cea63063330fb62ea99fced8c28cd1c80c77378b6001d2d0fe1d8
SSDEEP

3072:7j0TZ1chZPBRBVu1EEv9hu3n9hUWVcRYkioL+ZGVc7gwXMjElExgrUEbgRRDcOTY:dFvK32KayLWgjElEyTgRRDcQ/moUlOs7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
455bd6540ac00f3ff2b42884fbb5059e_JaffaCakes118

Files

455bd6540ac00f3ff2b42884fbb5059e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

msoxmled.pdb

Sections

.text
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 240B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.cdata
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.khe
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE