1670a6f3a463da339d782179e0d01389_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1670a6f3a463da339d782179e0d01389_JaffaCakes118
Size

138KB
MD5

1670a6f3a463da339d782179e0d01389
SHA1

223466ffeefb3c23551a53c483b4a89df9189ed4
SHA256

64f25cd66ecca950df2eee3f0fb50cdb9a8bf5b7b86a2a71d5375d3ec5bf2a74
SHA512

58f96f07275406120a87341628bb328ba0c3c521d2cd7ebe47233c8a80f211416e45a0c5179060a83659a766b4054e431ca6f292f66c4780e176eee9bbdba47c
SSDEEP

3072:LVQINhXeYxko1fG2VwvwjKp3n9o0pLw0WNuyLR:p9DxRVljin9ppLUTR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1670a6f3a463da339d782179e0d01389_JaffaCakes118

Files

1670a6f3a463da339d782179e0d01389_JaffaCakes118
.sys windows:6 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 161KB - Virtual size: 161KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 155KB - Virtual size: 155KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

INIT
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bmm0
Size: 524KB - Virtual size: 524KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bmm1
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ