0d8fbac7bb2f15c3d144ca7d2dcb3ff3_JaffaCakes118 | Triage

Sharing

General

Target

0d8fbac7bb2f15c3d144ca7d2dcb3ff3_JaffaCakes118
Size

804KB
MD5

0d8fbac7bb2f15c3d144ca7d2dcb3ff3
SHA1

891845ce7c9745ea4a9e34fa478b47c69300642b
SHA256

4471b7869be4dacd7377c93d336f0ad22821c852ac27f7ae873a7c94d3eeb558
SHA512

8715ebdef2b2f98c695f83baba285bc083ac594dae41237bc62a3d0357c9ee86e59bb4ae20a88bd9cbd0bfe2b8efcf79296fda749d2641d0dd0daadf1be7a6c2
SSDEEP

24576:MdvdpL3Iylw3Q3unG50iObb5wA08Gnjt2V8xke+8xKP/jvhKWlF0tjbanGN+1E4v:ovdN3IylbAHWA/Gjt2y6e+8xKP/jvhK+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0d8fbac7bb2f15c3d144ca7d2dcb3ff3_JaffaCakes118

Files

0d8fbac7bb2f15c3d144ca7d2dcb3ff3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.tls
Size: 114KB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsr
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CODE
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.BSS
Size: 568KB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 8KB - Virtual size: 5.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.BSS
Size: 108KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE