19bd048d99f5890ea5e43fd4fe807671_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

19bd048d99f5890ea5e43fd4fe807671_JaffaCakes118
Size

2.0MB
MD5

19bd048d99f5890ea5e43fd4fe807671
SHA1

7e9a4868c4aa88cab867e473ce13cc657b667928
SHA256

66cb69c7ef7f430d39ee3bedb22ef6169c8873f8d487607e794aad2dbea5eb4c
SHA512

9a1dbbc402d93ad708fdf432834b1a12e5fe2bdb36c016c2efb24ca37a2622a49b212e63ed27d6ab978b6b99293e0e1928c8fcf89805fab34b8a0a1103b6d844
SSDEEP

49152:Cv2E3JvVZGWh/QQ/vh5tznegXSqoAfhuYQvArg8g7C7p7w7m7p7f7N7p7U7i7p7e:Cv2E3Z9hoQtzne+SqZhuOp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
19bd048d99f5890ea5e43fd4fe807671_JaffaCakes118

Files

19bd048d99f5890ea5e43fd4fe807671_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.text
Size: 2.0MB - Virtual size: 5.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 21KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 8KB - Virtual size: 5.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rcdata
Size: 41KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE