0acf7248aa74ec9b58550595a1172453_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0acf7248aa74ec9b58550595a1172453_JaffaCakes118
Size

401KB
MD5

0acf7248aa74ec9b58550595a1172453
SHA1

4d0adc0bde94671c685a0c625e417e56068f5ea5
SHA256

6b353f0da6ee387b1b4d3e7cbd5f4fcb5e9e90ea7d52f50ef98704b500f66b37
SHA512

4ee9acc1096fa99cff384375f125925147910c372e18648ceae4e1a5af1ff35c50cadc6b4caeda82e7cd3d45b9fe7f4bd58f95fdfd7068fd9686e895c670b6e6
SSDEEP

12288:u4awNCsummsCorIhCUoZZ7pcTsXcFOG6ref/ER:u4alBsCorIAUoL7CycFOo/I

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0acf7248aa74ec9b58550595a1172453_JaffaCakes118

Files

0acf7248aa74ec9b58550595a1172453_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xur
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE