1b9aa6e8b5b5e1303d0a1f1898d53283_JaffaCakes118 | Triage

Sharing

General

Target

1b9aa6e8b5b5e1303d0a1f1898d53283_JaffaCakes118
Size

19KB
MD5

1b9aa6e8b5b5e1303d0a1f1898d53283
SHA1

ac70ec84cd965a6870a9e69b5b58f83f3b1bc07f
SHA256

44871bdfc076c7a940977804000ab85f940a00bf6c80dedd3c538cbb89217e6e
SHA512

c88a7de495a3b64a249eb9b9e988702dc3eaeb5809c7a8f4a8a5ae1f12f761dc40b2f0588b615662bb861c68574f198871c77c2ebbf157919843161e092dd891
SSDEEP

192:dHnCD+GONJ5CKpaTG/otVS3qA1UWtqCCn1yu3iopNBTjkOGBCCr6I:dHnE3OL2TG/oqqAuKqCC1ytiRkOv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1b9aa6e8b5b5e1303d0a1f1898d53283_JaffaCakes118

Files

1b9aa6e8b5b5e1303d0a1f1898d53283_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 9KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

gfddg
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.newimp
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE