bbf832e7406cf7d01de2f27db4af2278_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bbf832e7406cf7d01de2f27db4af2278_JaffaCakes118
Size

114KB
MD5

bbf832e7406cf7d01de2f27db4af2278
SHA1

6de12bbd7660ee3f75554e0bda530f5c5c2cd214
SHA256

2090ad85ed43a2eb81a7f28cd47ad70504e8c6a1b7550eeb9af8a0d9b64f940a
SHA512

69ecde9ad794aa4f9f2ba8e47a4ffdc5a025d5632914267a52ea8e3675a9953e0136fdcd00c560d8e703a76aea054ae9cda6c76a243c3398d39448a8ca8a2c22
SSDEEP

3072:/XAtWYKBlVYMGYhLUw8Ytgu/sm6mo4+SJpYO9:fAoYKXVYsxUwKm/H

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bbf832e7406cf7d01de2f27db4af2278_JaffaCakes118

Files

bbf832e7406cf7d01de2f27db4af2278_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 91KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 244B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE