dd434348a4c6c07fe81632199fc222e1_JaffaCakes118 | Triage

Sharing

General

Target

dd434348a4c6c07fe81632199fc222e1_JaffaCakes118
Size

939KB
MD5

dd434348a4c6c07fe81632199fc222e1
SHA1

37fd035068b7c517f831520974defc40fc71cd29
SHA256

ff339c6387678ac6ad9e7403a579d0d52dbac97e94b65d0a6a1ea852bd10673a
SHA512

5495bd7a276829ab09470dc3854ec64eca30c8ed0a0e0f6d4f3008e29eb435e6b96ff5976ec152fff8d4b5b8cf8ebd84d8d07de0b0a84687071d17868c070c34
SSDEEP

12288:BoRXFO85PEKTm9NFDemwzuV59YZVDYH+gTy6hfsnfg+FgDUIpWwiHaBAZV6EG8l:B2c85Pm9NFDSuJeOb+nI+FgDjpWw8Zv/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dd434348a4c6c07fe81632199fc222e1_JaffaCakes118

Files

dd434348a4c6c07fe81632199fc222e1_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 432KB - Virtual size: 431KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 94KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 2KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 369KB - Virtual size: 369KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ