12c30106a79d91be6b91330b3e458458_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

12c30106a79d91be6b91330b3e458458_JaffaCakes118
Size

639KB
MD5

12c30106a79d91be6b91330b3e458458
SHA1

cad0c680dcbaeb5aa382f02a8f9661e8719d59d7
SHA256

43ebf04a117c53a05d70a407f18dd2b1edb60137102b3d0965b0717ad4e4e1c5
SHA512

b62ac371feabb1eced7ec2d4c31e4ef81a53b0750d364560f5a8413ef4a05eb9958b5322af54e009d0259853867c0a9ab05ed16bf4274f181e0b4b7569bd932c
SSDEEP

12288:cNyMJfsnZIjbmON6nQd2OUqPAA5jhForUrq+sjTvGd9T/ZOq4/LtG30AHQh6b:QyMJfsZpA6nc2bqP35jhFT0jTvGvTc/F

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
12c30106a79d91be6b91330b3e458458_JaffaCakes118

Files

12c30106a79d91be6b91330b3e458458_JaffaCakes118
.exe windows:1 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 1024B - Virtual size: 584B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ