01a6bf6ae9c1403d97e7f7bc1bb6163a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

01a6bf6ae9c1403d97e7f7bc1bb6163a_JaffaCakes118
Size

181KB
MD5

01a6bf6ae9c1403d97e7f7bc1bb6163a
SHA1

317b64a008360f0e1d3519dba064b6b2d46d3954
SHA256

0d31d10d2d396730eb8c778a59ea821cb21fc3951d183b05ff5d0a26688bb111
SHA512

07be9b97cecc6efef72f77233304c5521f0d40124d27df138ad4d2f12b230f4b54e8dd27cf90c2bc19f42802c32fd1ed7c16d1de49c4ffe5d93a00cdc866772e
SSDEEP

3072:qT3NDjVuS4Q+k8UEnt3hvQCkvQ43mfoA1piFBEG1uaHZZo4Jdn9QXQW5i3M5:03Nn0S4RWEt3hvlkvQFwkpkEG1uSo4JY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
01a6bf6ae9c1403d97e7f7bc1bb6163a_JaffaCakes118

Files

01a6bf6ae9c1403d97e7f7bc1bb6163a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 1024B - Virtual size: 536B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 9B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 366B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 177KB - Virtual size: 177KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 76B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nah
Size: 434B - Virtual size: 434B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE