0dab8b5a1e31d4ab57fb7a95f9ca961f_JaffaCakes118 | Triage

Sharing

General

Target

0dab8b5a1e31d4ab57fb7a95f9ca961f_JaffaCakes118
Size

1004KB
MD5

0dab8b5a1e31d4ab57fb7a95f9ca961f
SHA1

f032f8c74f968939416c482908c0ff280686f403
SHA256

9667cb68897be57871e7a55f870ff45ae14c33b6d96cd5407acb979f2f0c67ca
SHA512

5244a7bd7222d9c188658efd53bf4166eafec1eb81069ee3011d22cf8e3c1b1ea3cf8453fd31c2e3c79bc921f8bf323f15f52727330181413d710be3063d6aa6
SSDEEP

24576:b7cBEQrL8Iqhu3lo23NcgBo+A437wdVuyYUpDqQsKNv/gTJVk:/cBEQ/K4lo2NrrqVu8puQss

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0dab8b5a1e31d4ab57fb7a95f9ca961f_JaffaCakes118

Files

0dab8b5a1e31d4ab57fb7a95f9ca961f_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 255KB - Virtual size: 255KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ESW
Size: 720KB - Virtual size: 728KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE