0459f814231850cc515d2f797f36e758_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0459f814231850cc515d2f797f36e758_JaffaCakes118
Size

561KB
MD5

0459f814231850cc515d2f797f36e758
SHA1

34ce823c79b5db8bfaa6e06341e7b343efa643eb
SHA256

d617ad27c2ee845971941e8bc7d7e93df2e69f02a6a6003eb362b9fea1436921
SHA512

1616ef7575fa8cff40ca3adcd540a40901e90515d3ef8817a20b06be667d3e469f2726341a929499b43830983cd862e2e46ea2a500c3dfe5a5b2df1c5fd30753
SSDEEP

12288:KfH2pohMiS81yrKD7yyTw2VsPOq1nGTExTst:sWWN/1ya75N49GTrt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0459f814231850cc515d2f797f36e758_JaffaCakes118

Files

0459f814231850cc515d2f797f36e758_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 462KB - Virtual size: 462KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 9KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 20B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ