08ded952bb8c8688ed7ceb3a11c64d90_JaffaCakes118 | Triage

Sharing

General

Target

08ded952bb8c8688ed7ceb3a11c64d90_JaffaCakes118
Size

164KB
MD5

08ded952bb8c8688ed7ceb3a11c64d90
SHA1

23a1f3fab631c48e7839f3911b8654fb83808b82
SHA256

e83671d5bbec6cfda8075721fa4f440dafeb9839fb841ea0671195597d942b5a
SHA512

8db53af537e4dd259d1789e57134c2b6892ad61d06afffac798a579fd5fcb24c38a54f247de99f63f6fa59dd1f1b79c6bdd101bd0ed6ac7d343d49e54c213922
SSDEEP

3072:3yppao9bHmJe4PPgSy2Zb2odOeQ7CQRHfBjpXs5vNkUjebnx:gZyJepHoH3Qzjp8hAnx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
08ded952bb8c8688ed7ceb3a11c64d90_JaffaCakes118

Files

08ded952bb8c8688ed7ceb3a11c64d90_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.pooa0m
Size: 1KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.debug
Size: - Virtual size: 3.0MB

.reloc
Size: - Virtual size: 420KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.packed
Size: 136KB - Virtual size: 140KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE