ced6772d05f342e89e9c91831f12573b_JaffaCakes118 | Triage

Sharing

General

Target

ced6772d05f342e89e9c91831f12573b_JaffaCakes118
Size

416KB
MD5

ced6772d05f342e89e9c91831f12573b
SHA1

d4c2237c64427e9f1b6eb56f8d004a14556c28fc
SHA256

1c68d9d89426bb30bc3890d7f44ce1e0a2d82cf47492a8d1e65e9fbcbd0d1117
SHA512

a4bc8395da836216750bdd69f786763dddcdd82bcff7d0f7c604e1b94df7ae68508f16b44bb487c96fcbc1c12eeed62694e75e4171fdc47fc252e86f79ae4849
SSDEEP

12288:pZm/gBcQKgTksgm1BmUgcTx3QTZxxyPQkSJN:rjJZT1gmlgcGTZxxaQk8N

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ced6772d05f342e89e9c91831f12573b_JaffaCakes118

Files

ced6772d05f342e89e9c91831f12573b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.code
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 239KB - Virtual size: 238KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 349KB - Virtual size: 352KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 73KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ