40c86fbfeef6f8a29e775fc79f8407be_JaffaCakes118 | Triage

Sharing

General

Target

40c86fbfeef6f8a29e775fc79f8407be_JaffaCakes118
Size

100KB
MD5

40c86fbfeef6f8a29e775fc79f8407be
SHA1

bd8ba739ac10d95dd8bd96ed6bf220d5b48b12c5
SHA256

3913d71ce2af0698fdbbd6503b3830ba2c0f252625b472ec84d050e584f1d1c9
SHA512

1487a0dca8232f37f4f31869a3bf39f1a6d53ebd281b50d148c40380785ce03e0e09bb6cc415027b3104466cbdfdef42bd6e4ca3306124adff04d3d5ea78acf6
SSDEEP

1536:yWkylUWjJA4YZLBJ8AFL24v6XwGpcP1iQHp7XRas5I1kC:yg/jXYZLf8iv6NpmXHp7Bas5I1kC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
40c86fbfeef6f8a29e775fc79f8407be_JaffaCakes118

Files

40c86fbfeef6f8a29e775fc79f8407be_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: - Virtual size:

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ