286a1f65b5a95ca2dfedb847d70d6293_JaffaCakes118 | Triage

Sharing

General

Target

286a1f65b5a95ca2dfedb847d70d6293_JaffaCakes118
Size

186KB
MD5

286a1f65b5a95ca2dfedb847d70d6293
SHA1

695e3afcc142f408166a6c29e5ca8e1f0032f877
SHA256

be8990e760682e7cd4fa0fec3d91efd4aabaa5fbdeee9498bd3f429fe33044e2
SHA512

c147c86f3912d601e09aa3a7f3f73bb7a8551a53ab9194843076ee301608c2568427b32f534903be0faca83613fcb3cffe6bfa86ed1e84acde45d68b56494354
SSDEEP

3072:CjRVhckps+xygSwLlCTMQEeoOs1ftT1BoJEOwia99qu/U++8nHSwRf:CjPekpl/LlCTMQEeQ5yJEOwia99A++on

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
286a1f65b5a95ca2dfedb847d70d6293_JaffaCakes118

Files

286a1f65b5a95ca2dfedb847d70d6293_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 445KB - Virtual size: 444KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 109KB - Virtual size: 109KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9.1MB - Virtual size: 9.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ