d442810489c68a14f378903f1563d3f0_JaffaCakes118 | Triage

Sharing

General

Target

d442810489c68a14f378903f1563d3f0_JaffaCakes118
Size

114KB
MD5

d442810489c68a14f378903f1563d3f0
SHA1

39c6eef8c47a8d20b67eda7145f923f9ac2fe7bd
SHA256

3fe21d3c610bb2b3ca2d861a3bd565292ac26e8a70d3c8238ea4a7ac7f793798
SHA512

9cef3cea59ec88fa530df7c5bef505aa507a8d4a6b41fbc711d2a6d7dfdae41277370487b9f9f105e7da268978c8b51fbbc2c7d585a526df67cae5a3be37bce9
SSDEEP

3072:/XAtWYKBlVrvGX0OtgdpjyOZToXC106morLgFMlyVTJ69:fAoYKXVrj3jZZOfYeTJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d442810489c68a14f378903f1563d3f0_JaffaCakes118

Files

d442810489c68a14f378903f1563d3f0_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 91KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 244B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE