8caaac4981261d20a17f7aed634c0600_JaffaCakes118 | Triage

Sharing

General

Target

8caaac4981261d20a17f7aed634c0600_JaffaCakes118
Size

360KB
MD5

8caaac4981261d20a17f7aed634c0600
SHA1

f1ceb5a0c5d5675de9611f215fb827f04626c318
SHA256

73898923eaf6fde53d535a129d99bca9f728d964db27fe19d6265a7940359f64
SHA512

823bf883486a8b57e48ef9fffa04ea825580b6c20c3f1143736e104ed5d11abb5a838edfd2f0c0a4a630a8755ee452a56bddf3014282089cbb6c0d449e2b34f0
SSDEEP

6144:iX+SrHNonlM6d4nDWgRAkPJ/dftGQn8xID0DMFf7yO9do11OT8GSyp/a/kLFlQVb:ilolAR3PJfGLxe0Ds7y9OT8Ota/kLssO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8caaac4981261d20a17f7aed634c0600_JaffaCakes118

Files

8caaac4981261d20a17f7aed634c0600_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

M5ZAU1oZ
Size: - Virtual size: 292KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

zUJKhkke
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

hsNZcmeO
Size: 350KB - Virtual size: 352KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

TFzfSuy5
Size: 99B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

5e0hQWNs
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ