0c09f8cc8f73f93d7fdfb39382ea386f_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0c09f8cc8f73f93d7fdfb39382ea386f_JaffaCakes118
Size

34KB
MD5

0c09f8cc8f73f93d7fdfb39382ea386f
SHA1

2849f6af37f16ffe0a7903ba845e5faf05f1b723
SHA256

02e585c425612234f084fd457021df8df110a5d05ebff17aef591a34c108036b
SHA512

851f30d57f34c9931a8de641afd7d6a5ccf893e7d94d330d14c83803c100eac57523b5fa26bc2cafae656ab107d6efbe0d3a341f5f18e1dc11cfe407eeb3a432
SSDEEP

768:FWcjoCzRXMc4O4S0PZfXNdpj41PG9osIkd9R1wWGYQykX5wq1rUV:F1BxgSgxp8BGCsI+HO/YQUOQV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/IDMaker.exe

Files

0c09f8cc8f73f93d7fdfb39382ea386f_JaffaCakes118
.rar
IDMaker.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 4KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 28KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE