da9865cf96d0d7756e2ee45b7b0df91b_JaffaCakes118 | Triage

Sharing

General

Target

da9865cf96d0d7756e2ee45b7b0df91b_JaffaCakes118
Size

253KB
MD5

da9865cf96d0d7756e2ee45b7b0df91b
SHA1

b9a759208014652aa16a6cbc0004653146918b3c
SHA256

cb77839976486e3ef0549fa99821c819c5e9bf3e15cb279ffdadaef437a9304e
SHA512

7e2d8edb35c3f692e4d6f535f241f561e072add31ab0460daf2ddc1a1cc5920d1d332f1947beb226d05d6d0471ce8d4de596ac9949472a64190679c6f63ceb46
SSDEEP

3072:GBFozyFl9IJZBlo5ZXvXoze43kv+e22TzPr1LVthgOWMEMjYD8X6+KdJZ0lZ6f1v:GrbnImXQa43iT31JEPRMe+KdJQIY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
da9865cf96d0d7756e2ee45b7b0df91b_JaffaCakes118

Files

da9865cf96d0d7756e2ee45b7b0df91b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

�Yqm0
Size: - Virtual size: 700KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�Yqm1
Size: 239KB - Virtual size: 240KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�Yqm2
Size: - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vmp0
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 532B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ