f4b843c1a90d3e118cdb94d5c4346c6d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f4b843c1a90d3e118cdb94d5c4346c6d_JaffaCakes118
Size

554KB
MD5

f4b843c1a90d3e118cdb94d5c4346c6d
SHA1

33db0e15205f890a2848acea6b809e8fc85b465c
SHA256

bb02940ed91125b05694f149c86088f4cf01785c4958564edfdf6e04d7ef8d92
SHA512

8be2a3af13b7c160cd49c63487a3c1980ae2c940492315b0ed9e6fe3f7c540756a582cb8698227dac36b920311c11914fba65aa0a6fa3df7b1dc7456116b4b6c
SSDEEP

12288:qfzXuK4WyhU/Lx7oMv3Cd4UHgW8ZzRiSmEhk3ibpVOSz3BL:SD4WyS/S4Sdl8ZzRivEc6xL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f4b843c1a90d3e118cdb94d5c4346c6d_JaffaCakes118

Files

f4b843c1a90d3e118cdb94d5c4346c6d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 196B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 536KB - Virtual size: 536KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ