829c1af44efeb9bf9cdd36c2485d5ff7_JaffaCakes118 | Triage

Sharing

General

Target

829c1af44efeb9bf9cdd36c2485d5ff7_JaffaCakes118
Size

960KB
MD5

829c1af44efeb9bf9cdd36c2485d5ff7
SHA1

bef2fc966c8237e28d0e482e6ce9b7934a8e6f34
SHA256

146c10d48f744126ea59caa455bb4d71dcea0ef1062cd656c4af3bec5209ed92
SHA512

661f00e6f00030bb5f825e916cfa5861d631a6c0fe25f2bdb4f458ca276e207c50acf936288601bc72ceddabeb14baa21b25789fbe55d18514ece075b2b66af6
SSDEEP

12288:7jXZ82aNM99ZI/NT1WLbezR5jmTVgKRs6om4cENZ5kvJ5jmTVgKRs6om4cENeWK1:7TMNUTIhaC3yRjZKSv7yRjZK1K1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
829c1af44efeb9bf9cdd36c2485d5ff7_JaffaCakes118

Files

829c1af44efeb9bf9cdd36c2485d5ff7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 335KB - Virtual size: 335KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 586KB - Virtual size: 586KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ