36bbb34a93327549fbfa53b0bc59bab7_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

36bbb34a93327549fbfa53b0bc59bab7_JaffaCakes118
Size

234KB
MD5

36bbb34a93327549fbfa53b0bc59bab7
SHA1

336d725a21774d2c77b2f75d48c403cd14083402
SHA256

c2b4773e1d5157ba497f628b46d306ae2d164688ba56fe5f2d3bce333ccc265c
SHA512

d757269d215ef750d9e3c6ded8670052a869091495ce0be905e021cd26464f1609357f4bea6bdf06b083a05a37d84de980cb9b17c3339a839be6298ce9e7e7e4
SSDEEP

3072:Ul2Me6dRz7r7hsIpck7y4kku3LkuT41RaXeuG:Ul2M7fvr24kj96Ph

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
36bbb34a93327549fbfa53b0bc59bab7_JaffaCakes118

Files

36bbb34a93327549fbfa53b0bc59bab7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

�text
Size: 136KB - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�data
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

��
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

terazi
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.udata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.AoRE
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE