b451a8ee4925339c9278854b7d7984d7_JaffaCakes118 | Triage

Sharing

General

Target

b451a8ee4925339c9278854b7d7984d7_JaffaCakes118
Size

820KB
MD5

b451a8ee4925339c9278854b7d7984d7
SHA1

0890325aaae8262f393410937ac8136e11b9d12b
SHA256

ff9efe2f56e3b4a3935ae211b5d76049b09b70349e141b2a9f0b11fb574b2256
SHA512

dc9e764765cabe2026f7562e2c88b7c009798b2d2f78f33e97350cf4a606c4a3caef32dd96c1e9dd31fa9e43463b0a9e0cb4456a1833003049f79e28cb383494
SSDEEP

24576:R2dye98pFUL8rL9TnQvT5pzvS0+H5nJoI:odn98puLA9TnQ1pWHZnCI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b451a8ee4925339c9278854b7d7984d7_JaffaCakes118

Files

b451a8ee4925339c9278854b7d7984d7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 376KB - Virtual size: 2.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 140KB - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 299KB - Virtual size: 300KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE