462b985313208aa6a1a7f97874701c88_JaffaCakes118 | Triage

Sharing

General

Target

462b985313208aa6a1a7f97874701c88_JaffaCakes118
Size

190KB
MD5

462b985313208aa6a1a7f97874701c88
SHA1

bb02574beb0594066b78211dd0fa19a1e7580a4e
SHA256

13eb3303d243e1f06f9ae6bf2101b5bee431963f5631f3cc813280a09a1ac4e4
SHA512

e6be35a0fc4f9a2c7a3fd90a4c5d0f625338741610877154af8295f2ef9b055d88034446ee3ce4b17815091e4b83c8793ddc93404fec570e99d9eb5f51197b63
SSDEEP

3072:AM/J3L1a96wjAk4++J4pPrTHtQ9z8JcOSHNkKPHap8l2DLWW9TkREzj0wzuKPbBo:AI1Zwjd3k4pnNQt8itPHaB/XZ4wzuSlo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
462b985313208aa6a1a7f97874701c88_JaffaCakes118

Files

462b985313208aa6a1a7f97874701c88_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 803KB - Virtual size: 802KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.conb
Size: 512B - Virtual size: 82B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.cona
Size: 512B - Virtual size: 60B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ