25845c35fe1564824ab005f56bb578ed_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

25845c35fe1564824ab005f56bb578ed_JaffaCakes118
Size

4.0MB
MD5

25845c35fe1564824ab005f56bb578ed
SHA1

f2b97026234f27b1e0743c612b3378e1b475e448
SHA256

2351f1351dd250922b455ef0e1adb6dd3a5e380a2505f059cf482b6409612b19
SHA512

b37ce7f2e7c71f0fcbe219a72d74f1e066de6c207cb479ce7b7cdec59ba37d8413d81a250df027a9431bfaf6d13f9848fa473e975d79e32c03c22c684b827a61
SSDEEP

98304:mwgNqW1pnRL7LhU2tzsytGF+DYXslUo0TyVwKgVk2S3Lu:mnqKNLhhzsyHyTmvgC2SC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
25845c35fe1564824ab005f56bb578ed_JaffaCakes118

Files

25845c35fe1564824ab005f56bb578ed_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 2.1MB - Virtual size: 2.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 3.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1.9MB - Virtual size: 1.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ