e12803834b0de15493dfae9ab8ef4e35_JaffaCakes118 | Triage

Sharing

General

Target

e12803834b0de15493dfae9ab8ef4e35_JaffaCakes118
Size

4.1MB
MD5

e12803834b0de15493dfae9ab8ef4e35
SHA1

215ac6a8503ed9c0f51dd15a3ca50c6fce539887
SHA256

0086810e7f608b7a2547362fc2bd933b708bbd3ffc15e109d58e0c457248b171
SHA512

403a11e883372d8e12e8910c4f4a3d08bb6619cdf70aa62a40d8d5fb5eb892c623fb0b5b2765129567e3b99c79eac4b9607b66e0bc45ba2bdd05549b6014143d
SSDEEP

98304:8ULgBGkUS2LVt7L7pOR2QatuPJoQCYsmykBeAbRH/2:8ULoxCnPcxatuPpCYsmykBeAb92

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e12803834b0de15493dfae9ab8ef4e35_JaffaCakes118

Files

e12803834b0de15493dfae9ab8ef4e35_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 108KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 2KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ