20e46e37ee41763fd232abfcf0f282fb_JaffaCakes118 | Triage

Sharing

General

Target

20e46e37ee41763fd232abfcf0f282fb_JaffaCakes118
Size

214KB
MD5

20e46e37ee41763fd232abfcf0f282fb
SHA1

dabff3421bb4f57e32b427919c766dcaa8c515a2
SHA256

11724c0d4668e722614280cd8b38e3390a6df323d794105766fd17541e909b60
SHA512

5f04b1db91cd650d96021633decfd1b6ea874cbaa188e2e2eef1f91fe28a2eadd9df2acac6acefe1b04208a160b702edeb0788719b999c2ce55341240510b38d
SSDEEP

6144:zQajbKPBHUh27OQrVjcSI71O5uKJFQv7gYbdathmglUiEwrRq:3bKPBM27DVjXIJIYba0gqwrRq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
20e46e37ee41763fd232abfcf0f282fb_JaffaCakes118

Files

20e46e37ee41763fd232abfcf0f282fb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 97KB - Virtual size: 167KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 21KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 28KB - Virtual size: 208KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 53KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 11KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE