ea0b4a48e0b7cc0767f2f6a5deaef4ad_JaffaCakes118 | Triage

Sharing

General

Target

ea0b4a48e0b7cc0767f2f6a5deaef4ad_JaffaCakes118
Size

153KB
MD5

ea0b4a48e0b7cc0767f2f6a5deaef4ad
SHA1

29f794b551fb9f34b2df5968ac636b3260bfd04a
SHA256

3eab5057bf84ecb642998e9d0e3a753d39ea6a656e54519e1759eede88bca475
SHA512

61078025239beb46d4988312645db894802422bcbd792198ee2d0b548812d57bb0a6721bc0efce141816a6cfb8bec5dce6756e8048091f84606ae84df3d662c1
SSDEEP

3072:d2jpmyvLmkJeOAZjaK+59YPROmx+k0EbEDzHKrUiWzhejJ:Y5MT0KLJOmx+Sb+zH8Cz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ea0b4a48e0b7cc0767f2f6a5deaef4ad_JaffaCakes118

Files

ea0b4a48e0b7cc0767f2f6a5deaef4ad_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 92KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE