3e9ec0e61833d63c66ba19f46bb14441_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3e9ec0e61833d63c66ba19f46bb14441_JaffaCakes118
Size

51KB
MD5

3e9ec0e61833d63c66ba19f46bb14441
SHA1

36e546369149c33ebe2b4f241429e70a08b5bcce
SHA256

760ede103a798e24bfeb83ae998e89100656618bb3d0521937d607def1dffbba
SHA512

5811df4db19c134c69a0c06a9b310dc53eda212ca8ba8d54ebbec6cb1ee6b4a90fd59d19712ddcc524010655e5be63cdf2b5e9e542c4542efa14fbf4d8cf92a9
SSDEEP

768:ZvPjXx20/y4IZdZR04G4nOtLvZBCc0w1wOFItYYJBiAIxNcKRlLgtavO0:5PtXkZR06OlvZBTrKOfYjkNLRJgIb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3e9ec0e61833d63c66ba19f46bb14441_JaffaCakes118

Files

3e9ec0e61833d63c66ba19f46bb14441_JaffaCakes118
.exe windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 32KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 192KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE