ba39508dcf49b1e328e962b17dbfffeb_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ba39508dcf49b1e328e962b17dbfffeb_JaffaCakes118
Size

16KB
MD5

ba39508dcf49b1e328e962b17dbfffeb
SHA1

62dba6043f53761e914ae1003b263287fe287eb6
SHA256

d7deb9cf6aacf2794a8601cc602658b6aecf2dc5fad143589ad837b754ab9b89
SHA512

36bd717680b5bc007dfdfb5bd7a9c57fdfc9929628600855266cdbe7ffc8e69dc2740e2c1dea5037bde3dbfe71094489de50bde0f9334c4affb56059f43ccc16
SSDEEP

192:CVbTj5xvTDWjtQg5DIlLL7238g4u/7I1C9qayNIq48ZUlQ9Qi608fGgEac32:mT5aRIlL2tHJ9qaO1ZUlxiOGgVcm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ba39508dcf49b1e328e962b17dbfffeb_JaffaCakes118

Files

ba39508dcf49b1e328e962b17dbfffeb_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 137KB - Virtual size: 136KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 30KB - Virtual size: 19.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 62KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ