f9a3a354cb67cdcd28d213823391fa6d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f9a3a354cb67cdcd28d213823391fa6d_JaffaCakes118
Size

336KB
MD5

f9a3a354cb67cdcd28d213823391fa6d
SHA1

e6378ffac715868d336389065e56258427043394
SHA256

43d73eb68e9e81e5375ca4ab2aaf695c985cbd3c38cf7d993622e943f0fb5b02
SHA512

ee5735ab634c01ca398d43cbfef645a5d15c67ac9beea5ec60905464b7938085d176e4f4868c15049535893faf8f2c0cf7320d12173f473800bf0bbe58b7393e
SSDEEP

6144:YAwfoQnbPNv6B1Wm85KLE4rEcMqO9mCHlTTwdzWQAQySBp:EoQnbP56pMdqqM0Up

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f9a3a354cb67cdcd28d213823391fa6d_JaffaCakes118

Files

f9a3a354cb67cdcd28d213823391fa6d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.code
Size: 915B - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.empty
Size: - Virtual size: 3.0MB

.reloc
Size: - Virtual size: 424KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 310KB - Virtual size: 312KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 923B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE