0d8758518a13da01eb0b688ea08a96e6_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0d8758518a13da01eb0b688ea08a96e6_JaffaCakes118
Size

592KB
MD5

0d8758518a13da01eb0b688ea08a96e6
SHA1

bdf717ebdd2c3ca37748d6db828077df38dd7280
SHA256

ad309b1209af8c0621e51bc277851c994679a15f4c596c4a76553bbd496acd63
SHA512

7e7c93956b1e71815873915bad1205588310fa95f520a9ea06b4b2ddfcbc30dca3d578f1119011aa4597ca222b7a24a5ac1bd43a3502e9a1019b0e5e061eacbd
SSDEEP

12288:MH8WLBW53uPgn0iWQBoyYctb90DHf0oOSz3+wICGEQ52gfn:bWL03u4n97oeDhhCSN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0d8758518a13da01eb0b688ea08a96e6_JaffaCakes118

Files

0d8758518a13da01eb0b688ea08a96e6_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 91KB - Virtual size: 194KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 16KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 468KB - Virtual size: 470KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

FFGHYSHK
Size: 25KB - Virtual size: 28KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE