2361c99bf250089484e0b869de1e42db_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2361c99bf250089484e0b869de1e42db_JaffaCakes118
Size

1.9MB
MD5

2361c99bf250089484e0b869de1e42db
SHA1

f3c89851b3756d4fac71f721064a133e85abf14d
SHA256

4679388366834489a0aab983d3d83b55efa9d77f1a20d6b0b13f6021a1f551b0
SHA512

6e576c42f7eec08df3780053e2e86c82031f9b6abc2c405bf07a6116ee47bc312846f69e401c4e68c6ce65a8cd33047811bcb637edfb74cd0997b7438efba2f9
SSDEEP

24576:1iCpw72/mZtY17hAE3cBBCZ27Kqsl0db0Xvcoywk1zVA04L:1iqwXZtIcBURqsQ0Rywk1zV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2361c99bf250089484e0b869de1e42db_JaffaCakes118

Files

2361c99bf250089484e0b869de1e42db_JaffaCakes118
.exe windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 125KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 94KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 349KB - Virtual size: 349KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ