0de01da9a417d7996032dd56b006e14f_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0de01da9a417d7996032dd56b006e14f_JaffaCakes118
Size

14KB
MD5

0de01da9a417d7996032dd56b006e14f
SHA1

3a6d583adbf27bca5f7baa1fa4a4705d0a24802e
SHA256

ba0d497b6b9f71dec8f07411340ec27c6ec812a76b67144abb61e3ad289d1002
SHA512

2291ef84139f0d0511aad7fba34145017ce82ad150ce83e4c2d5370b3ee70be487de11745d4d683002e6b88544f90d6cb4dffd64e418662f9bb905bb3531ffb1
SSDEEP

384:c5yMJzRzHr5aHjxSoVvwuHi1K6eYzQhwIPuewt5lO:BDMoJwuh6evSImewtH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0de01da9a417d7996032dd56b006e14f_JaffaCakes118

Files

0de01da9a417d7996032dd56b006e14f_JaffaCakes118
.exe windows:45171 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_ISOLATION
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_NO_BIND
IMAGE_DLLCHARACTERISTICS_GUARD_CF
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

�aK�z"j�
Size: 2877.7MB - Virtual size: 293.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

�0��
Size: 903.4MB - Virtual size: 3921.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

O��
Size: 2464.9MB - Virtual size: 3392.0MB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE