17931d1d4d3ed6ea4809b5bc99c3f8e9_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

17931d1d4d3ed6ea4809b5bc99c3f8e9_JaffaCakes118
Size

113KB
MD5

17931d1d4d3ed6ea4809b5bc99c3f8e9
SHA1

d0d9c59b893e7e38a0b9f42ac685750f547277ed
SHA256

b95c20aaa917262c8abfa8d5f64077074288e2cfa6cc4d2cf70d736161b70df3
SHA512

d52bfb0753e4d5f81a0bba54f3468da8a01c3d4fb5c371cc1e45c50470dc888e3450ff1a14e67476d5b92b15b72bbf311f3fa46e1a19b1953c9669bc8e169604
SSDEEP

1536:XMIn0XwE9mSUBLYSYct/e3udtgeESQGvVAFoCCWHuf8MOIBp+t4uSySzQop:XMCC41YfM/eutgOVPCCWH08rt+yFi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
17931d1d4d3ed6ea4809b5bc99c3f8e9_JaffaCakes118

Files

17931d1d4d3ed6ea4809b5bc99c3f8e9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 4KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 98KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE