3d64ef99a643b91509992c11623df42e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3d64ef99a643b91509992c11623df42e_JaffaCakes118
Size

764KB
MD5

3d64ef99a643b91509992c11623df42e
SHA1

b6b0664b7961fd31e0b81c55ad27969b7c2d39a2
SHA256

d026c78ad7355e1c59cbcb1a406021c8d68bcb8b630d047cb093089f6a63f03d
SHA512

b4877bedf6e6ee4caa1dc211ad329a9cde65fa32990f89ae5de9ddcdc31d381493953191342ab1046a1ebe6588afda218090c12285a3de0570ff1554dc6c3b74
SSDEEP

12288:LgQknvN4J6gKZG4qVY04TJn+/8Yh/DyF3Z4mxxbFGd6wLaDaU39b5Nw:8jnQKY4qf4V+fLyQmXAd6K9mb5Nw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3d64ef99a643b91509992c11623df42e_JaffaCakes118

Files

3d64ef99a643b91509992c11623df42e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 220KB - Virtual size: 464KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 137KB - Virtual size: 360KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 19KB - Virtual size: 228KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.perplex
Size: 376KB - Virtual size: 376KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE