559c19db323d10e41dcaff11cef3e286_JaffaCakes118 | Triage

Sharing

General

Target

559c19db323d10e41dcaff11cef3e286_JaffaCakes118
Size

605KB
MD5

559c19db323d10e41dcaff11cef3e286
SHA1

7d07d16117fba31c5615032bfda6bbd4da0fbf2d
SHA256

61089ac73f67efaf01661b7f4aa5aa0905a36b2a4d9ac0af3899e39b848326a4
SHA512

50bdeab9d7a5b4f9201fc231fbcd069e72874dc0516a462bb3175f995c6f3a4c07c458c95ad20bbbe430746d1ca39b1597b6dc63611b43e1e633388036bdc04c
SSDEEP

12288:2JQoJYCBLml4TkKkRhxi/N58WBieuTxj6W0HKGEo5I2:uQoSCBDTgR6NaMieuTB6SGEL2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
559c19db323d10e41dcaff11cef3e286_JaffaCakes118

Files

559c19db323d10e41dcaff11cef3e286_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 676KB - Virtual size: 680KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 58KB - Virtual size: 328KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 198KB - Virtual size: 200KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ