602cc71aba55bef957799cc8f7c83f1e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

602cc71aba55bef957799cc8f7c83f1e_JaffaCakes118
Size

964KB
MD5

602cc71aba55bef957799cc8f7c83f1e
SHA1

899138f2892d9b1375fc37e8b6c37d0c8e0e2d03
SHA256

f6206ac9147c9e35bea66d2d6750e4722c1964dcfe5fb8e6c4a16fece4d3bf74
SHA512

0c8c077a349653ab387459ad93a02e8e634331a3aa4d31fbf0ada6ec76ab3cc0dfe6f03b9c7d57475d7ac7ac5cd53f5875ac53738fd08844a6882b2cba3c8ab7
SSDEEP

24576:Tpg/y02d7s0B95cZrHCpaV+ajpnJ0CreN0aqACAhZLtQ3:T+aV5ZBz8Ha+O2eThZLtQ3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
602cc71aba55bef957799cc8f7c83f1e_JaffaCakes118

Files

602cc71aba55bef957799cc8f7c83f1e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 504KB - Virtual size: 503KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 61KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 41KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 346KB - Virtual size: 346KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ