24b5df70857635f6bc68ddbb2f2e8576_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

24b5df70857635f6bc68ddbb2f2e8576_JaffaCakes118
Size

1.4MB
MD5

24b5df70857635f6bc68ddbb2f2e8576
SHA1

dead7db3e855c0937c923c238855add867bd7ba2
SHA256

52dd87fb783a4c7bb50cec7766740807ce7cc9b731786623df573072cc79d167
SHA512

95e0e350dd19815f52a3d01de1d7ae9fd7cd768ce7f57a8d2d0ef5a6208f95d148ee1a48601fa0fe4a64f52f794eaa23f158ba44195167af70e44fcaa283ec19
SSDEEP

24576:rv4tXnmbxd662AGrcGqbeQgjCv4tXnmbxd662AGrnGqbeQgjsv:rinMxQ6IrcGYgjCinMxQ6IrnGYgjsv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
24b5df70857635f6bc68ddbb2f2e8576_JaffaCakes118

Files

24b5df70857635f6bc68ddbb2f2e8576_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 417KB - Virtual size: 416KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 2KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 223KB - Virtual size: 224KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ