d0489792c29647edb5ec88dff10ba734_JaffaCakes118 | Triage

Sharing

General

Target

d0489792c29647edb5ec88dff10ba734_JaffaCakes118
Size

60KB
MD5

d0489792c29647edb5ec88dff10ba734
SHA1

65fc5a410b3041e571ba061ea74297d67f54443e
SHA256

30f5feb6b1c16525c55b453c33054adc54d188191b0b0fce2308755834ce0df3
SHA512

8bdba67153c4dcf9fe52bc7509410dd26244e7858384ad79b863b0f6efdb6bfd53679f6127bc69d738561ecb846e6f85841e30e8d2bdb2084e61aa1c5ff28275
SSDEEP

768:Hp6qphYOFWYeYur9X+LowIgK3Gya0nfYT6X6u8Ip2vyoP6zjIOqnC:Hp/qQkxgLTItXxnrqu8IMvy3jIOqnC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d0489792c29647edb5ec88dff10ba734_JaffaCakes118

Files

d0489792c29647edb5ec88dff10ba734_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ