da870ba9b24fc9dc92580810b2a6ddd6_JaffaCakes118 | Triage

Sharing

General

Target

da870ba9b24fc9dc92580810b2a6ddd6_JaffaCakes118
Size

12KB
MD5

da870ba9b24fc9dc92580810b2a6ddd6
SHA1

8dd0bf72b22536034fc7d7ef2b71eeb76857cca3
SHA256

19cec8a667310af18e2c6c91bc926d8a0f3d88cedd59b312b35e0a6748747fcc
SHA512

f01ab1f4be1eaed54d765cf0ddb72d4a5bc97c94b8264110afede9516e67350a59cd90b1676094d49b6e82c65f8f4cbf9e6f45acfee2559bdaab1babf87c38e8
SSDEEP

96:nPNnX1+nX5nXwWRoqLjyyUT1zIQfS6h65Cfbxi7rHXMWuX6jVyqgom2QVCdnET:nNW+MyyUT18QfSy64zo/3MuFW2Xd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
da870ba9b24fc9dc92580810b2a6ddd6_JaffaCakes118

Files

da870ba9b24fc9dc92580810b2a6ddd6_JaffaCakes118
.exe windows:1 windows x86 arch:x86

45496d653cd8501ac36af5b6d5a02589

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

ExitProcess

msvfw32

ICSendMessage

Sections

CODE
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ