08220abb912e7f3d60cdac610e15dcbe_JaffaCakes118 | Triage

Sharing

General

Target

08220abb912e7f3d60cdac610e15dcbe_JaffaCakes118
Size

144KB
MD5

08220abb912e7f3d60cdac610e15dcbe
SHA1

066c5be0e1e96942553f2d47acc580ea651ac1f7
SHA256

f36eb8f4e3fd9bf8aeddbdb62582efe2bf724377e05bf4069600eee652d31360
SHA512

7cdc7772b721cc3f40411fee4832e5f2aa367d1b0d9af6a580ae02492929698173de7ac56c40836be6e05819140ad2e7d18d68ca322ac0c0a2f9b81551b4dde4
SSDEEP

3072:0jlKZelTDibaBA5ZjjYrx0Z01FAbZ3eAIplpaJgnGPeg9:4welfBAvjjY9JbAb0naePy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
08220abb912e7f3d60cdac610e15dcbe_JaffaCakes118

Files

08220abb912e7f3d60cdac610e15dcbe_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 42KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 90KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE