3c758d8d68c29c176d4d4803fd6e2d69_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3c758d8d68c29c176d4d4803fd6e2d69_JaffaCakes118
Size

725KB
MD5

3c758d8d68c29c176d4d4803fd6e2d69
SHA1

d6e3e90b4826a7cde24d1c0b0a94f81a0ee1ccb4
SHA256

eb4d7d3e4d8a6394e04dc9a40f16b9950f0b151d60f35e6c1437abeb843a6b6e
SHA512

692630b396207c3cfe10fd194403cc6fc28ee53cf417ef0b2cf66f871a34f600d52d7510ad53bc0b3c511c79ef1b4ac0c77294e9ead0a7e9349fb1b17951d065
SSDEEP

12288:VapniPsHmdV4RirCpRifg3DUhnCBqg/dL5oSOSjUUlM6mzIJpPsa3nklOYnSi2ui:gpni0HmdqREidicqgIX1UlM67sa3kY2W

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3c758d8d68c29c176d4d4803fd6e2d69_JaffaCakes118

Files

3c758d8d68c29c176d4d4803fd6e2d69_JaffaCakes118
.exe windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 1024B - Virtual size: 584B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ