3b154bcc87a1e69a11ddc662835edccf_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3b154bcc87a1e69a11ddc662835edccf_JaffaCakes118
Size

3.5MB
MD5

3b154bcc87a1e69a11ddc662835edccf
SHA1

18e9983906819963f44d9d97471d8067079cac8a
SHA256

0ef1a52b3e12332a4c5afb91e702d9fe519a828bcfff73a1c24244e96aa84088
SHA512

15c4407542b46d718cb96cca7d2f512cb3405b985bb5905ce2955a9b46456cbb1618b49bbd491c196d7c2ff808c3ee50c2e73a8c4e35828a6e31fe97d230f637
SSDEEP

98304:72ppmkZfkB/tJfT/lOj71IRuBiqLYlM+Ds:72bItJbNkWqLYc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/wbgl.exe

Files

3b154bcc87a1e69a11ddc662835edccf_JaffaCakes118
.rar
wbgl.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
新云软件.url
.url