1b54edeb5f00813d86e1deab0b501369_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1b54edeb5f00813d86e1deab0b501369_JaffaCakes118
Size

44KB
MD5

1b54edeb5f00813d86e1deab0b501369
SHA1

79d568c173621406a9d1d1cb1a66be12c9ac7073
SHA256

bc0362e068f094b90723e6a29e108837d2a910f2944eee539ddcb6ca0dad1922
SHA512

909fa13e4ccab6dfb299ac85199f28b71d2c717faacc0160359c22ef3c539c9502705b8638b77c57e10eba07bac26424a063de4841a0588a20ef4ffe656abb67
SSDEEP

768:4VzjwvegHiP62KpUauUwuSU8SOi9oA5Jb+ZEV/5BauxCGCIA7ssCeOylk4:4VPwvDK65tul7U1V9oALbq6jauxCG2k4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1b54edeb5f00813d86e1deab0b501369_JaffaCakes118

Files

1b54edeb5f00813d86e1deab0b501369_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 1024B - Virtual size: 844B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ