291bfcc3b437b665eaa16a32bdcc69f5_JaffaCakes118 | Triage

Sharing

General

Target

291bfcc3b437b665eaa16a32bdcc69f5_JaffaCakes118
Size

76KB
MD5

291bfcc3b437b665eaa16a32bdcc69f5
SHA1

576e6c9820e789c6098a3c7c32f87bead56e06b6
SHA256

e82a47077bef6dc7b82da278938c2b2ff8cbf0733ddf03dacec009a000dda730
SHA512

9ea025cf01461ee0496287c1edd85a8c81e6f7979b22f4a558ecbff2cc5ba8b2d003d89e9930555b776dab89f671457c17f8c3d5971600355d7712dc0a63c8c2
SSDEEP

1536:2Bx77D6OCv3Mc99BB9DD6OCn8FFPHODY2kuhws+/zGYBGo51:S7eOCEq9pDeOCn8F9qklz1Go51

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
291bfcc3b437b665eaa16a32bdcc69f5_JaffaCakes118

Files

291bfcc3b437b665eaa16a32bdcc69f5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

��:~�5
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE