b10409ee04f8d6a505d5d7ec83648815_JaffaCakes118 | Triage

Sharing

General

Target

b10409ee04f8d6a505d5d7ec83648815_JaffaCakes118
Size

3.7MB
MD5

b10409ee04f8d6a505d5d7ec83648815
SHA1

006b4f16cbf4d0946b93710cc726f611a4d31757
SHA256

d683ecadf856afe303ad81d91eb303e29ddd240c68eff21fc6c977df9cf3b1dd
SHA512

b972ab9cf8e25b922281127857077781205caae9a363c623f446f1ea3bcf26134ee00c8473f2f964566545875c60a00af473a42063e84d4f57473ba68fa39c73
SSDEEP

98304:X+x26AsN3yN7pnmc95SWPGBu3TF2NW5AUAIanL5FaY4qbLhr328b:X+zAsNirn50kGBuR2NW5AUSnL5FxbLRt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b10409ee04f8d6a505d5d7ec83648815_JaffaCakes118

Files

b10409ee04f8d6a505d5d7ec83648815_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 3.7MB - Virtual size: 3.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xip
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.box
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ