0e43063cdcf090225d6adae652118b66_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0e43063cdcf090225d6adae652118b66_JaffaCakes118
Size

701KB
MD5

0e43063cdcf090225d6adae652118b66
SHA1

3f3a3beee92683e7f92b47ff8e171caafcaac42a
SHA256

91033b6d76e8924838b29142f415e8850d1879326e7e10582ed9c1c90c64abab
SHA512

2aa382b8d39150a74ab08e9e68b1ed336e83a5d017e12542fd3b9f8cf2dc91cfb17a1cb735838bda26cca759dd09fba832709066794d7a4a6c991b1a6ad3b076
SSDEEP

12288:56BqV4wcyr+ZmTA+kJFsd/o7kIiDmLCxY53uUhYhYzdpqzz0O/uQNPJFjIg:6qVMlZmTATFsd/C7ilxIfFp9KNNBF5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0e43063cdcf090225d6adae652118b66_JaffaCakes118

Files

0e43063cdcf090225d6adae652118b66_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 104KB - Virtual size: 103KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 12B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 563KB - Virtual size: 562KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ