23c6fc9aa1daab14eb7f26cc47f6b756_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

23c6fc9aa1daab14eb7f26cc47f6b756_JaffaCakes118
Size

567KB
MD5

23c6fc9aa1daab14eb7f26cc47f6b756
SHA1

a5261823eca6774da87a79aa9f1b846161a4bb5e
SHA256

5f8b5bc71c3243b334193b308aeff04a59c53c7354bbbf72c8ac43236c3b2065
SHA512

3e03c7c3e85b3b010704dd59499f18da800f369fe4d4c3353be7da17e984a2f21d45a4a9ee051e1bff2423ec7b6ba7cdc3d30af2a239d8d923a4a7b84fa2136f
SSDEEP

12288:S+BODL3syhDwDEwGh3VkLo3Lv43JYBv/wODlTba:cDsEwDEx39L4WNv5Tb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
23c6fc9aa1daab14eb7f26cc47f6b756_JaffaCakes118

Files

23c6fc9aa1daab14eb7f26cc47f6b756_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 466KB - Virtual size: 465KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 50KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ