f43d649f129f92308d50d9d5e337c84f_JaffaCakes118 | Triage

Sharing

General

Target

f43d649f129f92308d50d9d5e337c84f_JaffaCakes118
Size

82KB
MD5

f43d649f129f92308d50d9d5e337c84f
SHA1

1a6a76235f4161f5722b4a478d86fbfa61819f82
SHA256

6be9ee3fcc75e73ac8700fe0fdf17a2d8a0a8df21f24dad01f32a27313b24be3
SHA512

520a54cce7aac4510002d3468d179ca803fa25e5e4c3f3184435336235fe0c04578e71ac24a41502145c7d10c986fa7bd2a803a9395c8defbf182155109bd0de
SSDEEP

1536:59HPYXvkcTI4836E9h+/i/fJbKpjgpXytjVnMXhndVVAIvnIhb1xmwvvoNJ7u9PB:5afkcM9/h2UCtjVnMXUIubvQpiPo+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f43d649f129f92308d50d9d5e337c84f_JaffaCakes118

Files

f43d649f129f92308d50d9d5e337c84f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.text
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 49KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 90KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ