38e0c6d8d2e711b930b2c5c62df3c7ca_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

38e0c6d8d2e711b930b2c5c62df3c7ca_JaffaCakes118
Size

256KB
MD5

38e0c6d8d2e711b930b2c5c62df3c7ca
SHA1

ab0bb53aef8c4d9a96f53909bf284b2c6ce8c675
SHA256

1c1740a8474e35915af7918ee20cd4440af1ebfb1897bd0bd6195aafe1af2eb9
SHA512

2bbdf629b729b842c4b2415ae1443dd7d6ef54154ff07493c71e81406f8d94f04e27aab280233df5cb8384db0ffdc609e64822432fdf42a101ee0b91121b9e1f
SSDEEP

6144:g1U/2FEHV1agh3zVPAs+RI8a4nJex+2LQKHK:YUYaFx+2L

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
38e0c6d8d2e711b930b2c5c62df3c7ca_JaffaCakes118

Files

38e0c6d8d2e711b930b2c5c62df3c7ca_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.petite
Size: 160KB - Virtual size: 160KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE