335425f15fc38428e0d9f89e656fd599_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

335425f15fc38428e0d9f89e656fd599_JaffaCakes118
Size

170KB
MD5

335425f15fc38428e0d9f89e656fd599
SHA1

012a2999500b70acd239307d40180a014d296c92
SHA256

b4d1869807c3e327df8018382bc2f2472244a6d30f0ee1bd492d230d8016fe71
SHA512

98047343ebc5f505d3d7bea3a7a2435955be567d6b1ad6f2ce40e737e929d0bdb929a30063ac17ab1b768b0f78644a033b737e2ef876ee9fa409ed3d002de1b1
SSDEEP

3072:hOoeDYHWnyksRpZTXxZHyOWajDjOxx3oORFvwOXoyjr7C+2t2Mh807:hO1YlksRrBy2DjKxR/YyjnCWMhN7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
335425f15fc38428e0d9f89e656fd599_JaffaCakes118

Files

335425f15fc38428e0d9f89e656fd599_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 772B - Virtual size: 212KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 113KB - Virtual size: 116KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE