f9bb4ca8c22f4c0c63cb1c95e08f9496_JaffaCakes118 | Triage

Sharing

General

Target

f9bb4ca8c22f4c0c63cb1c95e08f9496_JaffaCakes118
Size

147KB
MD5

f9bb4ca8c22f4c0c63cb1c95e08f9496
SHA1

eb2ece19537c56e18a1a3345ff09f2daa8e4d5ab
SHA256

2654a239ecb9798db314df2a52b05a5f556faf65d52a716533ecf33ea856e19f
SHA512

bf8ac9ec867b3e807ea702d16ddaad9c7ddbd71a91061e9f0b37a1f674f781b95803351c1446eec7515b63900a107f86e04f0eb11fb70fe74f3e2c7c5aee1cc5
SSDEEP

3072:z5Rfr1ZZpFhVpnEpGXIvDbKfn4YO6P6morL3Atm3TJ4Dl:z5tr5BVFENbbKfTHtm3TJ4D

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f9bb4ca8c22f4c0c63cb1c95e08f9496_JaffaCakes118

Files

f9bb4ca8c22f4c0c63cb1c95e08f9496_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 92KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE