362ede0f3d3dc1bfedde08c141014e59_JaffaCakes118 | Triage

Sharing

General

Target

362ede0f3d3dc1bfedde08c141014e59_JaffaCakes118
Size

237KB
MD5

362ede0f3d3dc1bfedde08c141014e59
SHA1

04029b092ccfdbcb77f8329b71a6911b43bcab4d
SHA256

245dbfcece036165481e5d900f99e506c8aa89a2bd6873fafcce46b4631522f2
SHA512

931b847e8bdbd4f18b19eb1c069a79929420bbb4dfac3c39522c43bcc019724a6b7d6f356a31164768f61a9f069cc3dbfd344ad9d795f6a1775e6d8ff253669d
SSDEEP

3072:IiQfcQo6PQnxb3ypG8wVACDDL4coQs9N1asqQnehPSk1HCy7KK0o4aYM+EkZY7aH:Jm4n1y5w+CT/jiFdnGPX13mK07pSk/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
362ede0f3d3dc1bfedde08c141014e59_JaffaCakes118

Files

362ede0f3d3dc1bfedde08c141014e59_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.gda
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE