298d9063b03cf09a2c8ffd9bdd456f72_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

298d9063b03cf09a2c8ffd9bdd456f72_JaffaCakes118
Size

15KB
MD5

298d9063b03cf09a2c8ffd9bdd456f72
SHA1

da6703c665efe30dce6d25958e1e414c78868cf6
SHA256

1894e1631acb9682c953219d95b4e9b2bc6802698e1085a4fc6fab060b2b1468
SHA512

4ef9916fd9b1ca2e4eee1657451983a677ea9d131025028a88e0fe25ff82859ca1eae01e060b9d684b6218abe10e28c310acf0cde6bd5558c886c6a1b0eb5462
SSDEEP

384:jp4a9X/Bj9bwKvLmaMvk+Ji+6tq129iMKHVY82k5VQ2TtC9or++S2:Oa3hwMmaSdiltqjPB2I3gs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
298d9063b03cf09a2c8ffd9bdd456f72_JaffaCakes118

Files

298d9063b03cf09a2c8ffd9bdd456f72_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: - Virtual size: 663B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 670B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ldut
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_WRITE

.PopSky
Size: 14KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE