09a8c895f57e13bb417303c6dc18446d_JaffaCakes118 | Triage

Sharing

General

Target

09a8c895f57e13bb417303c6dc18446d_JaffaCakes118
Size

1.6MB
MD5

09a8c895f57e13bb417303c6dc18446d
SHA1

e9c25b1b086cd1d31ca781b28028664df5991cdb
SHA256

894ca3c7704348ec489ef1921e90b5552422974655e5fc4d01c9fe0e19f9cf6f
SHA512

148a5f0be99eed487a2aad6daf94b2ef4de1fbdb341026ad03e3970867211b7a2a72fdb9a1c683e3e98817c7440c6284817a35b92daa90717f75034cfe32a60c
SSDEEP

49152:0AFa0vPWOSr79kO7CJTMXVW1alGoEcKkblM+:0D0vvSr7WO7CVMXc1OrEcKyM+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
09a8c895f57e13bb417303c6dc18446d_JaffaCakes118

Files

09a8c895f57e13bb417303c6dc18446d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 260KB - Virtual size: 768KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 716KB - Virtual size: 752KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 80KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 3.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 600KB - Virtual size: 600KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE