360e849eccf4b2e3b84eaf7ebd2dbcab_JaffaCakes118 | Triage

Sharing

General

Target

360e849eccf4b2e3b84eaf7ebd2dbcab_JaffaCakes118
Size

372KB
MD5

360e849eccf4b2e3b84eaf7ebd2dbcab
SHA1

d01d6ce5580a02361710d624e64ebffe096f99eb
SHA256

4948d2a1724dbe8e3d914cba9427dc54700dcb9502560520f39226e6fbd3b009
SHA512

07bab79ad43977137fc4485716851cf0a0a805dacd75c84a84d8a93307bb260b756be691a5339109cedad84b81e63255f0e90fa87fc81787450aa3c8d24a42ae
SSDEEP

6144:mcuujpLnXY9jrRNMvDzu58oi+lshjCLQFTwiKoJRKQ8FS5HqcrcZY:mcuOdI9jPuW58ohMcQFTwihmQAS5Kcw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
360e849eccf4b2e3b84eaf7ebd2dbcab_JaffaCakes118

Files

360e849eccf4b2e3b84eaf7ebd2dbcab_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8d43c9ad48f969a6e575bc68f6619997

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

coredll

ord530
ord528
ord524
ord1765
ord630

Sections

43a5clc
Size: 26KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 2KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

4ca96l5
Size: 1KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 296KB - Virtual size: 592KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

alex
Size: 40KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE