JaffaCakes118_36255c00f82c49aac977fdc55fc1976c | Triage

Sharing

General

Target

JaffaCakes118_36255c00f82c49aac977fdc55fc1976c
Size

132KB
MD5

36255c00f82c49aac977fdc55fc1976c
SHA1

088438bc46e053987e1ac2a3bd87833b6bf6d29b
SHA256

4a201703f2344baed15926e45960c44175c4a844e1f4d3ed355b147e00543105
SHA512

a1eb950c8272f75ecb140f0b387ec00ee5aa5b02858136241f83128e452b1ae63fc62e657ef6197c488f304e2979f0d554de5c88a2d31412d7c154f9bc3a3d5c
SSDEEP

1536:DfbmUgeUtHmOC6ScpLh4hFLhad70mtAbLnXQ1l7s1Vgjv1r3J/HjYU5Uzv6gcYt2:DfbmUkNmOJSo6FQ1kXQ3Q2/DJ5Ujj3P

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_36255c00f82c49aac977fdc55fc1976c

Files

JaffaCakes118_36255c00f82c49aac977fdc55fc1976c
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 92KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zdata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE