fdde49b3668c5ac1704a99d9567f0888_JaffaCakes118 | Triage

Sharing

General

Target

fdde49b3668c5ac1704a99d9567f0888_JaffaCakes118
Size

175KB
MD5

fdde49b3668c5ac1704a99d9567f0888
SHA1

ebb26beb6a81a029903ef686555e6d0db4c809c3
SHA256

77d2fae535aff6e817700c909832de134c4fa2e69c0fa5a4626d7d65282e9ea9
SHA512

76c14a39c0d7953eb0574922ad2742065c7604e824ad4a6249df9487f59b13d20fcb651ac68000a1de03eb951b933c5130702ca8743115494aa8cc124c51e29f
SSDEEP

3072:1FdyQNe6dCjXTu/B8KSWGWfblZCVdKCcfGwcvlYEayK61uNSbcY7FpcNRQ6y:1FR6i58KDfhZ7Ccfm1K61uNSbccFT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fdde49b3668c5ac1704a99d9567f0888_JaffaCakes118

Files

fdde49b3668c5ac1704a99d9567f0888_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 164KB - Virtual size: 164KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 597B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 630B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 4B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 476B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ