008203bb071eeddb18a659aa45fa438d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

008203bb071eeddb18a659aa45fa438d_JaffaCakes118
Size

688KB
MD5

008203bb071eeddb18a659aa45fa438d
SHA1

3d1eb385345d02f39dad78523825659d0bd568ce
SHA256

f531d808e8da68da6409f96479b09b8ced3ea84655557a7738c8af2fb1bd7281
SHA512

97d6488aaf87011ccf0868655cfac17393a4944a11b338bfc0548611bf725dae7ad57d339585c4c18adb1f71d2fa839800f8b95cb7ccd384803a951258a8d0b9
SSDEEP

12288:q+gKmG2w398q/V+Md+cLdhDwtrxvar0F3Z4mxxxeCPpa88WpfGVZMGN/X:Ui5EtFvxQmXLpeWpdG9X

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
008203bb071eeddb18a659aa45fa438d_JaffaCakes118

Files

008203bb071eeddb18a659aa45fa438d_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: - Virtual size: 380KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 372KB - Virtual size: 380KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 314KB - Virtual size: 316KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE