1037bc89166c4ad5729a17af608b499f_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1037bc89166c4ad5729a17af608b499f_JaffaCakes118
Size

197KB
MD5

1037bc89166c4ad5729a17af608b499f
SHA1

47ff0720b4eea7b449e3e45a2bc50086c4bbb9f4
SHA256

c83a80f739cd5d8514e3b3d7eed83b4ec3b2ecfd0b03b979c1f88f6c36738f18
SHA512

aa4e0ca6d35b4b60847669a84d31733479ca514ef8f6336d5d0398f261e2236cb3c3917a6b358c86f8e7bd40ded6f19b09978374d654903df4c06744205ff1f5
SSDEEP

3072:rNp5kE3hJ05ifyS3/YsHiMAeZhrZdVZCzTaJfmk4VyaBxWAxXVsQu0:rfy2hJ6if0UGuEV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1037bc89166c4ad5729a17af608b499f_JaffaCakes118

Files

1037bc89166c4ad5729a17af608b499f_JaffaCakes118
.exe windows:5 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_REMOVABLE_RUN_FROM_SWAP
IMAGE_FILE_NET_RUN_FROM_SWAP
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.bss
Size: - Virtual size: 340KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.packed
Size: 119KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 62KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.loader
Size: 15KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE