0bb7d720c0f7f6bb78703b81aa140ba9_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0bb7d720c0f7f6bb78703b81aa140ba9_JaffaCakes118
Size

46KB
MD5

0bb7d720c0f7f6bb78703b81aa140ba9
SHA1

83f8e308fdf3d63aa09b156725496d97e595a076
SHA256

cb6119d77a774b6ea5b953cd6259d7129b1d2dd8e5dbc2bcaa87aa0fad77ebc3
SHA512

fbdd9186ee7a870117b378f063aa0ba1b430ad8e779f8d9027b7da84e2077e740ee67800d32cfaa1b56ea8c028aa7ee3daea05d2c5dff00e410b7f8699c173a2
SSDEEP

384:AXrBK2u9A6vAS1kTy/kA/g/K1xjxlcLVV9zJPOm0ypdOfXRIj:GV4vASX/kQgSPjDcLVV9FPOm08uu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0bb7d720c0f7f6bb78703b81aa140ba9_JaffaCakes118

Files

0bb7d720c0f7f6bb78703b81aa140ba9_JaffaCakes118
.sys windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

INIT
Size: 128B - Virtual size: 128B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 32B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ