ddf9081a9ac34beb06a077578a3c0c31_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ddf9081a9ac34beb06a077578a3c0c31_JaffaCakes118
Size

37KB
MD5

ddf9081a9ac34beb06a077578a3c0c31
SHA1

99d96ebb6eb59e286056577763bfc298b31dbdb7
SHA256

3f0c3055e67e86874b7c8fbfc2f338be0b68ada693a1778a67eee3be986de1f0
SHA512

064e6d79c5145d32826aee8aad43c2600c2e95b405dc9e366ff59aff45cfa9f01f3c7f72eb357e7cfbea8314a19f549fdee1d54bf480dd65a3b2b4e052a1cc88
SSDEEP

768:fRumCA747c2XfKE6DuJc+cq1hxCsdpIZ8K7SH1BK8m+:gr7o2bdc+H1BK8/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ddf9081a9ac34beb06a077578a3c0c31_JaffaCakes118

Files

ddf9081a9ac34beb06a077578a3c0c31_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 512B - Virtual size: 320B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE