d494e06d4a8ba2b96fce5b34fa398c8b_JaffaCakes118 | Triage

Sharing

General

Target

d494e06d4a8ba2b96fce5b34fa398c8b_JaffaCakes118
Size

114KB
MD5

d494e06d4a8ba2b96fce5b34fa398c8b
SHA1

39cd684d159a3eb135cb6ae25443a53ae6f1018c
SHA256

2bb0ae3ee054ed939febdf2ef1da1262b905f03643853ae7e61671cbd45fb0ca
SHA512

173189891e88fdf027a0f2cb0bb7b02bf1cdd167219b9e1275b1b829715bd083615a39f5f0cb26691cf31ef9f295a7f8ddaf307a2c6db9784710e57cd7d30191
SSDEEP

3072:ZgH9pkDU48JwbB63WvePBhDS2Nu9CHmpGzDSE:Zs8SJY6mvYC9/psd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d494e06d4a8ba2b96fce5b34fa398c8b_JaffaCakes118

Files

d494e06d4a8ba2b96fce5b34fa398c8b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

xtghbms
Size: - Virtual size: 192KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

7lyv
Size: 114KB - Virtual size: 116KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

97c
Size: 302B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE