0344f3f9de6bb341fc26d23e3b0c0032_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0344f3f9de6bb341fc26d23e3b0c0032_JaffaCakes118
Size

257KB
MD5

0344f3f9de6bb341fc26d23e3b0c0032
SHA1

9d5d4b7b39b4ff0c1aeaa9796732d110cb1058e0
SHA256

a6a8e97f85424cc38fe690e5459103c7678319edb7e3ff9396e18158282d300f
SHA512

a82c4d989c8818963b952a74f1e72d1d06a1465bfc3f6e144aa1b0a9e6066881f8e6657be6b080e88326c11184042aa77125b701479628db319ab34c01eb7dc7
SSDEEP

6144:xRhCdyhBJgGAPSODQ4aAy0NLEYEWtCIK8:kILdAlDHXNbtCI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0344f3f9de6bb341fc26d23e3b0c0032_JaffaCakes118

Files

0344f3f9de6bb341fc26d23e3b0c0032_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.MPRESS1
Size: 250KB - Virtual size: 1.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MPRESS2
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE