36a7764025df9a752d2997d79e78a887_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

36a7764025df9a752d2997d79e78a887_JaffaCakes118
Size

286KB
MD5

36a7764025df9a752d2997d79e78a887
SHA1

e63588ed5fe1fdd29f3d5ee75530a1270644d1f9
SHA256

d21b5d96336172a1e8e7f5cfd275905950e23cf4d404f3c97e8b481a645c2cf2
SHA512

c7574ededa7f90e11bfca8a1306f0c6ad4479cf64d70e2e04c5f79c573bc48b4eb93514b3b032000b0d62854581d20e61c89391b098c84d9d60b719dcfd8c123
SSDEEP

6144:jU70i4FsTgXjcynlbwOJ92i/X82MqMPpvfkGWQ0WokRb7/6h5flYnlBTSYvXxPW:jhFsgYynlh7/s+Mxp1Rb7ymlvg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
36a7764025df9a752d2997d79e78a887_JaffaCakes118

Files

36a7764025df9a752d2997d79e78a887_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.text
Size: 372KB - Virtual size: 371KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 19KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 52B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ