f3b40c8d82f3808ae614bfe54c7ebf21_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f3b40c8d82f3808ae614bfe54c7ebf21_JaffaCakes118
Size

506KB
MD5

f3b40c8d82f3808ae614bfe54c7ebf21
SHA1

a0f331e7220d1e4910cf244651905e865ec6951e
SHA256

1bc69f86de9437944f197f9831ba243e985de4b70c5b28606a3e70331187747c
SHA512

89e5182e911360c62d5c9db916c959ded53329d996a263ee4d76df992d103c7c807e3ffde02e8e0826993eb5b4e942119f68bda8e490df469da545966e683773
SSDEEP

6144:I2EkTJB+suxzDUD70vNjhem+LrNGb0q9NZdSW5tvBmv0A3M5uaKovPuUnDL9PoJQ:FysDIlj4hHqnasMX3M5pDGgDRPAymE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f3b40c8d82f3808ae614bfe54c7ebf21_JaffaCakes118

Files

f3b40c8d82f3808ae614bfe54c7ebf21_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 475KB - Virtual size: 474KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 6KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ