0df2a289ce6deff994d1783eb216a348_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0df2a289ce6deff994d1783eb216a348_JaffaCakes118
Size

29KB
MD5

0df2a289ce6deff994d1783eb216a348
SHA1

17740c133d83b5c5de891d3f71e36284893bec6e
SHA256

cb24b3cf9fb46db34a11ae3028771682691d29134b9025f0fb0eb7363ee61c45
SHA512

dff8a7f567b57fb9a79c9a75be8d1d6c88df99944b2a412dc407f12541f5a4318dc9b6b172e81d09232799a88e982e2111433302375c4572734a522897c64f4b
SSDEEP

768:6JrTo1o+kIj8FFgItMYkkxyRKP/aP8BNF:6JruVUNMZk0YRF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0df2a289ce6deff994d1783eb216a348_JaffaCakes118

Files

0df2a289ce6deff994d1783eb216a348_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 681KB - Virtual size: 680KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 197KB - Virtual size: 197KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 31KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 3B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22.7MB - Virtual size: 22.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ