0b8174b2cb21fb173e6ec5a4f13d32ad_JaffaCakes118 | Triage

Sharing

General

Target

0b8174b2cb21fb173e6ec5a4f13d32ad_JaffaCakes118
Size

39KB
MD5

0b8174b2cb21fb173e6ec5a4f13d32ad
SHA1

f1c020374581968aa79a08a26a1a11e192fa4c6c
SHA256

cd1aa863cc7d01acb13d7dd84633176e10737e1ea55821df915f9c19df387447
SHA512

cc4d023f55946fc5121c974fe394b070cf1654f26457e854624fe1b454288124f5d049a3d20d475d37509f09f16755b1e944c8e7280b4093d78d09ff742e6f70
SSDEEP

768:4YXummOwDkXZHp8ShBmaoTATFFFflj0VCTmtkwIFGrYjSrH3BB+d:4YXum3wDkJJP449j0VCKWwIFYYUxBU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0b8174b2cb21fb173e6ec5a4f13d32ad_JaffaCakes118

Files

0b8174b2cb21fb173e6ec5a4f13d32ad_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

INIT
Size: 48KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 13KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

CRT
Size: 27KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 330B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ