375c8ddbba0a622ba09605637c024ddb_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

375c8ddbba0a622ba09605637c024ddb_JaffaCakes118
Size

528KB
MD5

375c8ddbba0a622ba09605637c024ddb
SHA1

2a1d944766f5d7df24c56b20d80281c3f72a442e
SHA256

96cd72bb0a6dba4a5761a0e282357907100489e5e8968359ca4ae1c290e8c050
SHA512

1c5f11a5ccd22956c379f938ee15615956f099106bc0789f5d15da182ae3945614fab070415b1d23d5ff3cf66950140ad08df53ea4911a376b130f54860c366c
SSDEEP

12288:wcKdUMdNDnNpJth8IqmR9BujHc0y0wh2DhqpnAToZGQmE:wrTn7FR9Yj8b0wS8GQm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
375c8ddbba0a622ba09605637c024ddb_JaffaCakes118

Files

375c8ddbba0a622ba09605637c024ddb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 481KB - Virtual size: 481KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 20KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ