0e4ca9f3be67ad28c7f4533a20e30940_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0e4ca9f3be67ad28c7f4533a20e30940_JaffaCakes118
Size

1.4MB
MD5

0e4ca9f3be67ad28c7f4533a20e30940
SHA1

09a8f7439a6128cb33399a45dd170ce92167edeb
SHA256

4f73094125308120f92f68e311bc9f11e858cdd2b941db017ce0f25b649f6d16
SHA512

18243bcabdfa29f492a6844d643ef14e915b0832630ca965130f2808643dc99ba1d0576d079a5c92b0dd62a6f56c35927e671b0ea8b3e3f01d22c9fff29b9b2a
SSDEEP

24576:KnjaKdEv6FLGqQYtleL6PvyralKGCl/LvigK/hbt/qX1/5WqezHM1Pwq28G3:KjqEgOPAlwJc5vQHM14

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0e4ca9f3be67ad28c7f4533a20e30940_JaffaCakes118

Files

0e4ca9f3be67ad28c7f4533a20e30940_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 570KB - Virtual size: 570KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 814KB - Virtual size: 814KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ