00c1c8de558d200679b584e5f5ee5152_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

00c1c8de558d200679b584e5f5ee5152_JaffaCakes118
Size

708KB
MD5

00c1c8de558d200679b584e5f5ee5152
SHA1

3c14a4ae094780655eff889c1dd1ac5a3b55183e
SHA256

a733c46ad19d5ceb86aee85e59c79cf4ac113a8b43c6dad4f751ba8a6995f4bf
SHA512

aae4fd1becb6f6c5c0546667c0a27355629ff8c3c1a40ac181d9471697616f57b8dcde400ae3e260bf64c9a42a343f5d46acb95f7971339d57629c07c1cf036e
SSDEEP

12288:5hoATRE15nhMxR2fdDFDrjePuN1Q7PNnF3Z4mxx8DqVTVOCy/:5EPmR2VNrj6uQzNnQmXbVTzG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
00c1c8de558d200679b584e5f5ee5152_JaffaCakes118

Files

00c1c8de558d200679b584e5f5ee5152_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

Size: 20KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 350KB - Virtual size: 372KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 329KB - Virtual size: 332KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE