fbc958c72c17edd59c3a27ae16185d6f_JaffaCakes118 | Triage

Sharing

General

Target

fbc958c72c17edd59c3a27ae16185d6f_JaffaCakes118
Size

761KB
MD5

fbc958c72c17edd59c3a27ae16185d6f
SHA1

5406c16323e3632b7eaf56212334baa9d0069c78
SHA256

037b8887da88e4494f59c8c02a73f47eb8ba2487083f0fcea645c56952dc265b
SHA512

40b5069241c24799528b65465e8638a4f2d17b82615d1e2ae20d0ca0a2f12c9fc9f5aa92495528f4952af3136b4d6ff7fc5702c6bc576d3f1340d364f41f98dd
SSDEEP

12288:YG5Zd1X7cuSh8qdvuLAbiARjnEpPtjI09DqF3Z4mxxEDqVTVOCz:Ywd1XAO+vAV+wpPm09WQmXzVTzz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fbc958c72c17edd59c3a27ae16185d6f_JaffaCakes118

Files

fbc958c72c17edd59c3a27ae16185d6f_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 20KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 384KB - Virtual size: 416KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 351KB - Virtual size: 352KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE