3f30ead9659642e2369ada3e0af79b86_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3f30ead9659642e2369ada3e0af79b86_JaffaCakes118
Size

12.5MB
MD5

3f30ead9659642e2369ada3e0af79b86
SHA1

b7354941c51ef411478db1c9f49bfc774a03065a
SHA256

d05b2f1ea9edc91b4f0e2a3f2d15b0b8ae51df124569839eadc795d55df8d314
SHA512

a5892979b420dc31d2e410173b3a885d13d1b27dc9fdce1706c3c08b72ec47164e02646d06c3b72e1d5415616d7708f59c1c235130d4a857ccd12c3671fa5f28
SSDEEP

196608:LCMw94ddbWsJz2ys8+43I2Ct+V/HJc8lW2wUq10tPHoRgbAU1WVtlGr3q2afP:2Mw94ddbWsBT/qP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3f30ead9659642e2369ada3e0af79b86_JaffaCakes118

Files

3f30ead9659642e2369ada3e0af79b86_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: - Virtual size: 10.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text1
Size: 260KB - Virtual size: 320KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 52KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 40KB - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1.0MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ