e1f16e62f25c0f380cd2958132c75659_JaffaCakes118 | Triage

Sharing

General

Target

e1f16e62f25c0f380cd2958132c75659_JaffaCakes118
Size

128KB
MD5

e1f16e62f25c0f380cd2958132c75659
SHA1

a385f5f765dec63a8ec79bb54d27ac891fa90775
SHA256

8291929f38871302f8a28f2bf485857fc97908d4fc82832faa183076c34451e8
SHA512

4e456bd7dc47960818bdf27a60bf9f7985bb01d823795afc9a6144cb7e135bd409796acba7b22ee190de9b813eb5aba2a9dad9ceb917019bb95352d756c3768b
SSDEEP

3072:uGHi6mwlZJ8iSUUdy2H+6KTwX6P7PTvhIcly:+uZZSUUdy2OwXGTvj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e1f16e62f25c0f380cd2958132c75659_JaffaCakes118

Files

e1f16e62f25c0f380cd2958132c75659_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 91KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zdata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE