3d085bf81c7620beba24de2f1f3f9697_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3d085bf81c7620beba24de2f1f3f9697_JaffaCakes118
Size

440KB
MD5

3d085bf81c7620beba24de2f1f3f9697
SHA1

b4938b4f1925c66725c6205f075d891a145234c2
SHA256

54f294dcb9a7b0485c42652e90f70abd31cc68aa41b78579965a9d313bf0b397
SHA512

4c558bc0c0a249b8b6a7a84ba4e94c8fd3245d5d59642be67b2a8b79065e8697c025bf9fe464a3610385985abd24ff619dcc28f5f0e021dbecf6d9bd7876af5e
SSDEEP

12288:+3lfeTXPLk6RxEKB3+0h5GDxf5A5aF8fiSTh:YR2RxEMvh5056amiQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3d085bf81c7620beba24de2f1f3f9697_JaffaCakes118

Files

3d085bf81c7620beba24de2f1f3f9697_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 324KB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 114KB - Virtual size: 114KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE