190e81a9f5884e7e27e9fbe996566cf9_JaffaCakes118 | Triage

Sharing

General

Target

190e81a9f5884e7e27e9fbe996566cf9_JaffaCakes118
Size

370KB
MD5

190e81a9f5884e7e27e9fbe996566cf9
SHA1

612c2c3cf7faa2508a2dea91071f87bf3fd8ae71
SHA256

a143f63b515f75275b55a2861fa1cfdd1c91f13b7195ab460a84784a8ae512d8
SHA512

969cf9e9c8205850bee1c1e9c67917a8b3c860c5ee9c7fa9a432998402363a041448f33279a8c2fa8a72a21e2978264e8e7802d0b4201889a0f51c5befe145e4
SSDEEP

6144:BSpHIKqV82XrliQsW8ubcadcueLRNI3IGLjsfSYSUi:Pw2lMXVNIXjsfSYg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
190e81a9f5884e7e27e9fbe996566cf9_JaffaCakes118

Files

190e81a9f5884e7e27e9fbe996566cf9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 368B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 12KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

INFO
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE