1c5fbeaa0c1e68fc83642cde27b46ed8_JaffaCakes118 | Triage

Sharing

General

Target

1c5fbeaa0c1e68fc83642cde27b46ed8_JaffaCakes118
Size

53KB
MD5

1c5fbeaa0c1e68fc83642cde27b46ed8
SHA1

1ef56f9c0b148346c8c507c45012f7e2460b7847
SHA256

32d81900b007c044a49623616bdb319d28411e875699949b3423f09998df1b11
SHA512

8dcdc802294b993c6aea04f7e1ff08c2f833c6132ba83978456b9ae4eef990253b6df21c979b1787eb9bd63d1f228d03f688deff77cbcbb46cf8974c9460a0cf
SSDEEP

1536:HEhnlyY6oOCw4ei1jzZvtWmU4X/JXZxHWAzhNbMbj:Qlydp4eGzdwmU4X/NWYNMj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1c5fbeaa0c1e68fc83642cde27b46ed8_JaffaCakes118

Files

1c5fbeaa0c1e68fc83642cde27b46ed8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_ISOLATION
IMAGE_DLLCHARACTERISTICS_NO_BIND
IMAGE_DLLCHARACTERISTICS_APPCONTAINER
IMAGE_DLLCHARACTERISTICS_WDM_DRIVER
IMAGE_DLLCHARACTERISTICS_GUARD_CF
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

Size: 512B - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 53KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ