0f9ea4d56c568e21266e135ad298bd4e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0f9ea4d56c568e21266e135ad298bd4e_JaffaCakes118
Size

117KB
MD5

0f9ea4d56c568e21266e135ad298bd4e
SHA1

640b6839d1938c0704865a8b0be27e77cee06f1c
SHA256

5bb02795d9122f7c6d5dd82ce66de42ec33e6ce68774e611a044da2f01437e1f
SHA512

a1d6d35d9938640c4ca70f229ecb1f93017e2dae80cc96224bf5d6bc599a9b4ab2fe9e8eae1a2d2024d0290ac3ca19bff5a51699181ee30fec7a0fff7946f43f
SSDEEP

3072:wKBC5CH+xF7vCww95YeoLoSqtIzpvOF87Fr97:NBC564ubYe5tyyGr97

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0f9ea4d56c568e21266e135ad298bd4e_JaffaCakes118

Files

0f9ea4d56c568e21266e135ad298bd4e_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 73KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 15KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.petite
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE