30b0ba3878d5aaca996377986c7a0043_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

30b0ba3878d5aaca996377986c7a0043_JaffaCakes118
Size

4KB
MD5

30b0ba3878d5aaca996377986c7a0043
SHA1

bbfd0b0c8f4ee439db9a6d720a3044a6c8cbd824
SHA256

5dcd3cd90f6b23a305a72c1624061a4413d77faf803942972197c8d7ad1220c8
SHA512

5e5f4c48f921bb26945b89f0297f359974bfb526698b5f4a4d046ae1f4f11db324c3dd73b89d1728223facbd23d4a97c3b63067316b2c2a5cb99cda3d74a76ca

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
30b0ba3878d5aaca996377986c7a0043_JaffaCakes118

Files

30b0ba3878d5aaca996377986c7a0043_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 428B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ