fb3cfb3f79c09b80096d2306d332dd66_JaffaCakes118 | Triage

Sharing

General

Target

fb3cfb3f79c09b80096d2306d332dd66_JaffaCakes118
Size

65KB
MD5

fb3cfb3f79c09b80096d2306d332dd66
SHA1

c2d9436c6db861eb44784da94be666d65fcaf535
SHA256

d4f6f273af21aed65fb56054ba7734dd8b3f541c60e59a62eaa833f9c905d0d7
SHA512

2c2d55281d74f32f295203a14882f29c90cf6b2d636dacb2ff679e6446b8d927f9ffc39ab9748683e2272e77727fdc2cb29d38c61cd76ff37505b501c9571131
SSDEEP

1536:HcbGnFm0Es5jIZwd7mZulETuiy2rUtNuA/MFYBjSSqfL:H19EsVdqnKi7UTuw0UjiL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fb3cfb3f79c09b80096d2306d332dd66_JaffaCakes118

Files

fb3cfb3f79c09b80096d2306d332dd66_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 516B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 944B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

code
Size: 38KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

code
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ