34494abbb4a247ca0506fb2d4ad35c32_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

34494abbb4a247ca0506fb2d4ad35c32_JaffaCakes118
Size

561KB
MD5

34494abbb4a247ca0506fb2d4ad35c32
SHA1

fe926a7be78304fd0567b640d95d5c3c5f4e2b82
SHA256

75042fcca40c0cd6b3df98bb05256c235373709a4a211d17c0915db0b08f90b4
SHA512

49838ccf640edef0ce69a6756f306421a696edc20ecbabd7f985aaf3da459ad8ccb88fc1f47b3fb5d2c2e28e156684c877f85efb658b83d63f96d7a47d89d812
SSDEEP

12288:qkopuMOU8SMdnWK+N4tnxc3xy3yuYLNSECih79z4q:quffhnWKEac3xy/YYECs79z4q

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
34494abbb4a247ca0506fb2d4ad35c32_JaffaCakes118

Files

34494abbb4a247ca0506fb2d4ad35c32_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.simple
Size: 144KB - Virtual size: 144KB

IMAGE_SCN_CNT_INITIALIZED_DATA

.simple
Size: 348KB - Virtual size: 348KB

IMAGE_SCN_CNT_INITIALIZED_DATA

.idata
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE