d495d31dd83f98792301199590ca8cd5_JaffaCakes118 | Triage

Sharing

General

Target

d495d31dd83f98792301199590ca8cd5_JaffaCakes118
Size

129KB
MD5

d495d31dd83f98792301199590ca8cd5
SHA1

f05d5c9e22fb91fdbd35107a38200da57bc798dc
SHA256

187efdfeb0e00adf62b6fd600fd9ec3e2cdd4f0e986a4ed9611c355498031cc9
SHA512

a928b93e00758d2c3e191cc3df68d277a719ee14f9fb37043bbb6e6c1955487a3b9a2a07029ed390bb181cfdeb0ebeaecc82848409c7b3ac34e3154e7b542573
SSDEEP

3072:zDOGdlYTOwgImzX7zU4NGTzCeD5zJ40yf6xiM3pkp3c0B4j:zaQYTOum7LGTzCeIM5kps0Be

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d495d31dd83f98792301199590ca8cd5_JaffaCakes118

Files

d495d31dd83f98792301199590ca8cd5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 97KB - Virtual size: 229KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 852B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ