170989950a01a9fe137c0b455ea6b204_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

170989950a01a9fe137c0b455ea6b204_JaffaCakes118
Size

6KB
MD5

170989950a01a9fe137c0b455ea6b204
SHA1

f667659d5e03ae564fd1c15af7657ca0c22384a0
SHA256

f609e93b47c40b3fabc0e0e7e49bf08cbd35c87cf6c7b0b0e42df74f40801ca0
SHA512

e5c73da0d968b00976b66e365c6afe2651ea1b86515c0abf26b55fe1cab935440a04388b1e967718e64f0d07d771ab8c44676ee1ceab8946d8f0017b3d0b1a2e
SSDEEP

48:OEPBLSGuReKlqs334E9q44JRKdojaxd6CWdZcsA1mzOxcI/JNKlK6PB4BEUWmw6y:nPFSGIp3Iyq447KdveZqAaPNKwaTaP5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
170989950a01a9fe137c0b455ea6b204_JaffaCakes118

Files

170989950a01a9fe137c0b455ea6b204_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 124B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 308B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 4B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 328B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ