21d938a29e0ba5166d0b8d381d751c69_JaffaCakes118 | Triage

Sharing

General

Target

21d938a29e0ba5166d0b8d381d751c69_JaffaCakes118
Size

244KB
MD5

21d938a29e0ba5166d0b8d381d751c69
SHA1

f0db95def430cb9bc7a609a7fd068502252da5e1
SHA256

2d7bfffb86b6fd909b388a0992518d2bfc317493c60d5b1729c91f678aa41d63
SHA512

102b7980938863ec90dd08cab6e828e47dc035fd96a35278540a19bc2ed2d5f067db804d75e5d069c993dbc0e077cfd70cc249632e6678d71bffb9598979b2ca
SSDEEP

6144:Xm+Km7V4kbQLYkCxG2SFIwaYOTkgw7HCu7kx/lJj0D1lBWE2g+:2+H7KkbQLYkC024VaVogaiu7kxN0lBW3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
21d938a29e0ba5166d0b8d381d751c69_JaffaCakes118

Files

21d938a29e0ba5166d0b8d381d751c69_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_REMOVABLE_RUN_FROM_SWAP
IMAGE_FILE_NET_RUN_FROM_SWAP

Sections

.text
Size: 424KB - Virtual size: 423KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 117KB - Virtual size: 117KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 354KB - Virtual size: 354KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ