378ab8fab0cb62d2da475ac936aa3541_JaffaCakes118 | Triage

Sharing

General

Target

378ab8fab0cb62d2da475ac936aa3541_JaffaCakes118
Size

779KB
MD5

378ab8fab0cb62d2da475ac936aa3541
SHA1

2f0bf17e29c801829234066e355383e4aac849d6
SHA256

ff75f4c9c35e149e5e8e37e231e8698171fe5c24c29a58b001b07225e62acf3c
SHA512

c09595704f134d6328286d3285b4461ba6b27363b1534f82533839e4f7fc12bd3c8206214ac07025b748fcb5e80de3eba9d61a6f2c2b7565634550bca4e46be8
SSDEEP

24576:LLMKe/83zUOZMqv4bCH+RbpAtF8Ba5sH38HwPY:LwX03zpZIbCH+bmZq3ywg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
378ab8fab0cb62d2da475ac936aa3541_JaffaCakes118

Files

378ab8fab0cb62d2da475ac936aa3541_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

hydnlywj
Size: 106KB - Virtual size: 248KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

dedcjqgg
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

jklayfau
Size: 650KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

xwhynomc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE