24f407eb6f0773e8351d10cbb7c85abc_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

24f407eb6f0773e8351d10cbb7c85abc_JaffaCakes118
Size

241KB
MD5

24f407eb6f0773e8351d10cbb7c85abc
SHA1

b0d8c78aafcac9d9860646ad3cf1e2ce981b3010
SHA256

6765fcae67910a0b282e7615cd4af506f354e3a810804d1d54b557579b163250
SHA512

ebd21f1c501058280730d5a714da60b0e4324feef1d347eb8fff80a97a1896554f472aa62c269b95c10ce30cb74d4d65ddd8146902a995f156d1e725d40fc965
SSDEEP

3072:61rz9+/HQLvYKTFmpTZWuetGsGMzMv69D4WrzOSsvZzkuDj3mw2/hSussb8Io+t:krqHOYYmlIGbi9VrERLvY/h1ssb7t

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
24f407eb6f0773e8351d10cbb7c85abc_JaffaCakes118

Files

24f407eb6f0773e8351d10cbb7c85abc_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

M1
Size: - Virtual size: 644KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

M2
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

M3
Size: - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

relc
Size: 233KB - Virtual size: 236KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

KKeros
Size: - Virtual size: 608B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE