2afa6752e3ef9bc4483a764a40a0e831_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2afa6752e3ef9bc4483a764a40a0e831_JaffaCakes118
Size

389KB
MD5

2afa6752e3ef9bc4483a764a40a0e831
SHA1

4319b89144fa32e3b21614e2cdbb8637eca253a9
SHA256

daeb8ec40c861d5f4bdd89ff41d5db7774c4d9a8cae4f05a4dfb11cf5f5318df
SHA512

6feaf6bb4ce5bad70fbf62c7181a1bf9ef1d5b392ccfc7d8cb3a6e3db09b6edd1960a5bdd2a0c4f39495debd4019197b6437bb8506b05edd583b0552c9018a6a
SSDEEP

6144:m6FEkg24VrogSrN1nFsNDAYE6h4tMHTc3VRB9GWXBhpbuT9j4u+GedDFsgYT:JFEkgBrZSJ1sbqtX/BIW+vInsT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2afa6752e3ef9bc4483a764a40a0e831_JaffaCakes118

Files

2afa6752e3ef9bc4483a764a40a0e831_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 381KB - Virtual size: 381KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 4B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.test
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.newimp
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE