43b19521dd414b388cffdbeda6e8184b_JaffaCakes118 | Triage

Sharing

General

Target

43b19521dd414b388cffdbeda6e8184b_JaffaCakes118
Size

104KB
MD5

43b19521dd414b388cffdbeda6e8184b
SHA1

ddd0df6b85706930d6ee412a8b660129abfadab7
SHA256

7595fc0e80a134e69c862935bf03e05152d79b295d95b6a8a93055a80687134e
SHA512

18bd632926160f9a72f50db20c2602c34bcc45d09f5db261dddb30de6d1dc3fa981ff2d4437712dbc4e5b4b4b9709e8d5b74ffeccf95bad34bffeffecb0e72c9
SSDEEP

1536:2kuGj0gTdXtRrVYLbnOqh5LBzl+mZaS/aTftRxhg96WmDRrQJKgtP//knh:CG3tRponQV2UFv44im

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
43b19521dd414b388cffdbeda6e8184b_JaffaCakes118

Files

43b19521dd414b388cffdbeda6e8184b_JaffaCakes118
.exe windows:31758 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_FORCE_INTEGRITY
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_ISOLATION
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_NO_BIND
IMAGE_DLLCHARACTERISTICS_APPCONTAINER
IMAGE_DLLCHARACTERISTICS_WDM_DRIVER

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

�'�d1H?+
Size: 2371.7MB - Virtual size: 1985.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

5,7�@x�r
Size: 111.1MB - Virtual size: 3981.8MB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_WRITE

D=��%�
Size: 1381.5MB - Virtual size: 3015.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE