04b10af96ec17cf49dcc0b430ebb6079_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

04b10af96ec17cf49dcc0b430ebb6079_JaffaCakes118
Size

1.9MB
MD5

04b10af96ec17cf49dcc0b430ebb6079
SHA1

05702ac78b3a97bc0393b61ecfec9026dabcf9ba
SHA256

d1d194653305091bf45b90ecae34a1b8d73473e7988928658312285734a0ee2c
SHA512

6514a984a35b3e13f66943f078c07f368dcb904cc788680d48a8042a35b1165cbfc9aeb9aac0c6842949d7fb847b68a462f70dd222920b1fd9e08ba3832bb0cc
SSDEEP

24576:sLOL/aeIkZt+osmuXi6mNBv6/OHrm0cDaJUgcxTBP1IN93atpCGckbgiDgD+r+CL:YIHcDaJUvTV1IvatpBckbgiM+CCG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
04b10af96ec17cf49dcc0b430ebb6079_JaffaCakes118

Files

04b10af96ec17cf49dcc0b430ebb6079_JaffaCakes118
.exe windows:0 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.text
Size: 912KB - Virtual size: 912KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 184KB - Virtual size: 184KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 800KB - Virtual size: 800KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE