cf9a58e72b42e923f53b20c5c8e3c7f1_JaffaCakes118 | Triage

Sharing

General

Target

cf9a58e72b42e923f53b20c5c8e3c7f1_JaffaCakes118
Size

756KB
MD5

cf9a58e72b42e923f53b20c5c8e3c7f1
SHA1

dd736e526200b8f5c17acc80cdcdef7fcfed66db
SHA256

439258a9dbc3d9615b2f6224c669d93878cd2691d06b537e459fd091e4bb6931
SHA512

d255ab9ebdaf2b7083f501d2935d967ff5acea7e4c19595a85da40d49f36b6fe6573e867d5701a7aade26f41bbaa5e076d4335ca0f3c934088b07f79ac0d3bbe
SSDEEP

12288:3sA0nACaZ8vyssKmXXE91d956lJrS9fZvhOK/lGRgOUqmq9kR6lhKXPsARur+/IF:3bXjZ8KssbXU9z6De99kK/cRgOnmq9gO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cf9a58e72b42e923f53b20c5c8e3c7f1_JaffaCakes118

Files

cf9a58e72b42e923f53b20c5c8e3c7f1_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 233KB - Virtual size: 588KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 188KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 516KB - Virtual size: 520KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE