071c54fa6a2a06c3556770cc578af166_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

071c54fa6a2a06c3556770cc578af166_JaffaCakes118
Size

782KB
MD5

071c54fa6a2a06c3556770cc578af166
SHA1

acdc565d60bb4519b467e116826ff6cd7faaa1b7
SHA256

e53ec406eb08de60dafb3d3b069034f0bfc398b4bdb500e6bde512ca9f5a9cf0
SHA512

e5dd3ab568676e20ab72d95d7f49bd46e45e561661bfb1793575a6d65457db977e3af75b91a6a1beb21e549e1bbaa62a98f9424122e16028a7b5f674e1831292
SSDEEP

12288:I4m3yYXFEr7529hCva/mw5nSeNNoVYFBVPPrjTB8/LiVFG2pXKyVPdRcZKaKhcEJ:yipl2fNGiayVwoqiI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
071c54fa6a2a06c3556770cc578af166_JaffaCakes118

Files

071c54fa6a2a06c3556770cc578af166_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 657KB - Virtual size: 656KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 41KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ