24a00c2434706096309f4426429db358_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

24a00c2434706096309f4426429db358_JaffaCakes118
Size

299KB
MD5

24a00c2434706096309f4426429db358
SHA1

599cd145ed18ec75917cf70cf2bf8a17a973d535
SHA256

de10bdaf33b459aa4ad3183356f9b446912103f3e297db621449204fb29aafdf
SHA512

072ba6c4b5188933e0e5bd0860732e28d14b43dbb63d013af4c6c00876835555bf8e1c34f7413dc5799330c4ac6a85806f2ee6f4f933e8a4b662cf585fc015f0
SSDEEP

6144:xDGbCAuGWn7hv7+OYWgBnEexRYUqD15MIjMGHsiQ/gVGZPpOiA:xDGORd6OYWgBLRTQ1vjhQ/FPhA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
24a00c2434706096309f4426429db358_JaffaCakes118

Files

24a00c2434706096309f4426429db358_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.scpack
Size: 512B - Virtual size: 312KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 270KB - Virtual size: 272KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.newIID
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE