3d1979d7c904980a2cf6ce0e396543e3_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3d1979d7c904980a2cf6ce0e396543e3_JaffaCakes118
Size

1.8MB
MD5

3d1979d7c904980a2cf6ce0e396543e3
SHA1

1be358e1836dd06ef552c3fc3b94aad569d54ae8
SHA256

6061bd8a39bb5eed8ce0bb44c7895c4280c3a2cf8b503a71d8c0f4d629e86fe4
SHA512

0f3712a8980a902df17ba582347b0d4f2541480826f3612fcfe072d564fe3e9b4057012884f9deed90380144f872c8e52cbbe55b68b7f08fda6c63baf5f91cd8
SSDEEP

49152:+NRZ4UH15F2eKfKlksdbTzYBAKI4H2RIl0tzNpoeD6F1I0sgs:+NRZtxlhKHIgqIKd3Nw1Ings

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3d1979d7c904980a2cf6ce0e396543e3_JaffaCakes118

Files

3d1979d7c904980a2cf6ce0e396543e3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 928B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

services
Size: 1.7MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE