42b4389eb9d1b0ad7522e2da4431e827_JaffaCakes118 | Triage

Sharing

General

Target

42b4389eb9d1b0ad7522e2da4431e827_JaffaCakes118
Size

144KB
MD5

42b4389eb9d1b0ad7522e2da4431e827
SHA1

1cf01e9b8d67263344cdc793d0670be877acac8b
SHA256

f3209ab8fd42d933bf1923997b2fdd7ba83cdc838c9c4b1f5c38b65bffde384b
SHA512

2a7f9db83d874b5e68462035fd61bb7b78e69869c13bc7199330e3aeccb57963b72ce41c1e55bf003ef04ae7d50c943c56b706cff9dacee0c4c3f50cf7a5693f
SSDEEP

3072:s0IYwk7xA1oC/fD55ZxaII2Y1WGbGYRcaU+5paJmvLFUQs:nIYwkdOfFvxaBVrb3GSacvLfs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
42b4389eb9d1b0ad7522e2da4431e827_JaffaCakes118

Files

42b4389eb9d1b0ad7522e2da4431e827_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 43KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 90KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE