86db08cb0910d12494dae3550c53d7f0_JaffaCakes118 | Triage

Sharing

General

Target

86db08cb0910d12494dae3550c53d7f0_JaffaCakes118
Size

812KB
MD5

86db08cb0910d12494dae3550c53d7f0
SHA1

a503cd4ce51b3b25c4f7a482983a7d33d57a91bc
SHA256

e85a49a291742a8499f3a6da4457cc8741edd0a5974e90d64c22d541b7618c6f
SHA512

6d327e55f021628c703694151ff707b75b0ad74ded473771f0e176bd7b28e4032b1927f9ea7543c064accb2e63ff06bdfd867154ce33b4fa68d8488160a8372f
SSDEEP

24576:ZRwQg6icoECnjxoMHVnn496HNBLdzIggCWtK:ZRlHoEn6VnSyFdzFWc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
86db08cb0910d12494dae3550c53d7f0_JaffaCakes118

Files

86db08cb0910d12494dae3550c53d7f0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 24KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 3.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 596KB - Virtual size: 596KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE