35d959e5b27dae895c94bc3da558d102_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

35d959e5b27dae895c94bc3da558d102_JaffaCakes118
Size

171KB
MD5

35d959e5b27dae895c94bc3da558d102
SHA1

cf88fb3e59380ecb916c9a459c5ad23d68049d8d
SHA256

deafa6790f6c659d4b2bf64b919fb88b27bc00b711cef88ccec10414002f6f71
SHA512

8745451da542923f8baf37d37dffb903e9c519ce7e1c3d055865b03d32866b6a26d89544cff85ef613b8dd255118c7970673c0f78dfe9fb845c3618782ac68e9
SSDEEP

3072:1whaRSGX0z4MrD94M63kxtDPJjaGW9sb/mBWbX+7vf4af/5pD/:1wkRqD9563A5R3bjQvb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
35d959e5b27dae895c94bc3da558d102_JaffaCakes118

Files

35d959e5b27dae895c94bc3da558d102_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.icode
Size: 2KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rtss
Size: - Virtual size: 3.0MB

.bss
Size: - Virtual size: 436KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 141KB - Virtual size: 144KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE