bc0da9d5f244db879d38e959cbd2eea0_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bc0da9d5f244db879d38e959cbd2eea0_JaffaCakes118
Size

892KB
MD5

bc0da9d5f244db879d38e959cbd2eea0
SHA1

9a6f8e1a5c6ad8cf0d179598b6f1639d3156d580
SHA256

36a1cb94918329e74ee7f6d52bfa8fbf96dca9782749280b2e31a9660235356d
SHA512

845aa98ebfd97691eb8d476895522e8ec11981c338cd94c830430a976c6b886f5e0c34e8a7bb1d3c6b9e151a83af41f5fc250c91cad33285c703e6052936e63a
SSDEEP

12288:TwCXnLquXU99ICOj7xrcqPkePh+RvMaBlYJQCe2m9Or:0Fn9pOjFMePh+RpBlU69Or

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bc0da9d5f244db879d38e959cbd2eea0_JaffaCakes118

Files

bc0da9d5f244db879d38e959cbd2eea0_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.MPRESS1
Size: 438KB - Virtual size: 828KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.MPRESS2
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zz
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_MEM_READ