1975642ea75303bf0c38e89a7ae4b2d5_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1975642ea75303bf0c38e89a7ae4b2d5_JaffaCakes118
Size

382KB
MD5

1975642ea75303bf0c38e89a7ae4b2d5
SHA1

2c9da84dc7088fef9b121166f2bfac73eb2e9ac5
SHA256

7f1221739fba2f0e3aee04b2bbc5989e2f1bcf8e0a244dee3461db0a08590b14
SHA512

e4bd43df53544abec9bfc21c163d9075f06d4c1f4bb48dd3d6b76557ef6fbf6be22cb92ee0115dea4a9a9466bcec3aee0d44b5d9e1d07d6a99d6f775696780c4
SSDEEP

1536:hHHgKsxM7Z9VBvh3Aqe1yBvJX6LczRpUlwvqr9PxDt/BbFI:vsxwlAq4YX6LczzUlwu9ZDt1FI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1975642ea75303bf0c38e89a7ae4b2d5_JaffaCakes118

Files

1975642ea75303bf0c38e89a7ae4b2d5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 303KB - Virtual size: 303KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 2KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 43KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ